Fortinet Community

akristof · 10-03-2022

Description This article will explain how FortiOS handles static route with administrative distance 255. Scope FortiGate Solution From GUI and CLI FortiOS will allow users to configure static route with administrative distance 255. Lets demonstrate b...

akristof · 10-03-2022

Description This article describes the best practice for HUB in the ADVPN scenario with multiple overlays. The focus will be on HUB because ADVPN with SDWAN on HUB is not supported when this article is written. It will be based on routing decisions o...

akristof · 09-06-2022

Description This article describes how to adjust interface’s subnet mask in OSPF setup where interfaces involved in negotiation have different subnet masks. Solution Interface subnet mask must be the same on both interfaces that are negotiating OSPF ...

akristof · 02-16-2022

Description This article describes how to use SNMPv3 monitoring to get information about BGP/OSPF from multiple VDOMs. Scope In general, only management VDOM can return information about device. But there is expectation, that BGP/OSPF will be running...

akristof · 08-08-2019

PurposeThis article explains how to connect OSPF areas using a virtual-link.Indeed, in OSPF rules, all areas need to be connected directly to Area 0 (backbone). But in some cases, it is not possible to physically connect area to backbone. For this pu...

akristof · 11-24-2022

Hello, This dns-database was used in workaround for this: https://community.fortinet.com/t5/FortiGate/Technical-Tip-Expiring-Let-s-Encrypt-Certificates/ta-p/198419 But I am not aware that it would be default setting, i've tested fresh install and did...

akristof · 11-24-2022

Hello, No, FortiGate allows you only one action in firewall policy. So you would need to have 2 firewall policies, first that allows ports, second that denies ports. FortiGate always evaluates policies from top to bottom so order is important. Yes, y...

akristof · 11-24-2022

Hello, To be honest, never saw this configured on customer's equipment and I didn't test this in lab. But it should automatically try to connect. Go into SSLVPN Widget on dashboard or you can try enable sslvpn debug to see negotiation: diag debug app...

akristof · 11-21-2022

Hello, Maybe you are looking for this? https://docs.fortinet.com/document/fortigate/7.0.0/new-features/508779/fortigate-as-ssl-vpn-client This is doc how to make SSLVPN connection between 2 FortiGates where one is SSLVPN Server and one SSLVPN Client.

akristof · 11-18-2022

Hi, Are you sure that the source IP does not match any subnet specified in trusthosts?

Fortinet Community

User Statistics

User Activity

Technical Tip: Static route with administrative distance 255

Technical Tip: Policy route on ADVPN HUB with multiple overlays

Technical Tip: OSPF and prefix-length usage

Technical Tip: SNMPv3 monitoring of BGP/OSPF in multiple VDOMs

Technical Tip: OSPF with virtual-link

Re: DNS server default settings

Re: Can not specify allow and deny ports at a time for a server in polices

Re: Setup Site to Site VPN on 60F with SSL

Re: Setup Site to Site VPN on 60F with SSL

Re: Fortigate wan ip address is open for ping

Re: Manage Image in FGT 5.6.14

Re: Multiple IPSec VPN for using zones

Re: Master/Slave fortigate problem weird behaviour...

Re: Editing the GeoIP database in FortiGate

Re: DNS server default settings

Re: DNS server default settings

Re: Can not specify allow and deny ports at a time...

Re: AD-VPN, BGP, SDWAN and fib best match

Re: IPSec remote => IPSec site to site (Cloud base...

Re: AdVPN - ibgp multipath

Broad. Integrated. Automated.

Security Research

Company

News & Articles

Contact Us

User Statistics

User Activity

Broad. Integrated. Automated.

Social Media

Security Research

Company

News & Articles

Contact Us