Fortinet Community

alif · 12-08-2021

Description This article talks about the Server Message Block (SMB) protocol support. Scope Solution On all FortiGate models, SMBv2 is enabled by default for SSL VPN. Client PCs can access the SMBv2 server using SSL VPN web mode only. The default set...

alif · 04-16-2021

Description The security of our customers is our first priority. The Federal Bureau of Investigation (FBI) and Cybersecurity and Infrastructure Security Agency (CISA) have released a Joint Cybersecurity Advisory (CSA) to warn users and administrators...

alif · 03-21-2021

DescriptionThis article describes how to restore VDOM configuration on FortiGate.SolutionMany times, it happens that HA Cluster is out-of-sync due to different checksum value on any particular VDOM or multiple configuration changes are needed on a si...

alif · 02-17-2021

DescriptionAfter restoring FortiGate configuration from GUI, the FortiGate is sometimes inaccessible via HTTP or HTTPS. However, access to the FortiGate unit is still possible using SSH or Telnet.This article describes this feature.SolutionThe admin ...

alif · 12-29-2020

Description This article describes the ‘link-cost-threshold’ attribute available under the SD-WAN rules.Solution FortiGate SD-WAN offers four options for selecting outgoing interface(s):- Manual (default).- Best Quality.- Lowest Cost (SLA).- Maximize...

alif · 02-12-2023

hi @Yerlik, You can enable auto-negotiation under phase2 settings which will keep the tunnel active at all times. Please refer to the below link for details. https://community.fortinet.com/t5/FortiGate/Technical-Tip-Set-the-FortiGate-unit-to-bring-up...

alif · 02-04-2023

If the route is there in the routing table and one subnet is working as expected, it could be some policy route forcing the traffic towards wan interface. Perhaps, you can share the debug flow/routing table to have a better idea.

alif · 02-04-2023

Hi @antmich, Run debug flow to get an idea how the traffic is traversing via Fortigate. https://community.fortinet.com/t5/FortiGate/Troubleshooting-Tip-First-steps-to-troubleshoot-connectivity/ta-p/192560 If one subnet is reachable, check the firewal...

alif · 02-04-2023

Hi @kodiak, Please download the latest FCT version from Fortinet Support Portal.

alif · 02-01-2023

Hi @ammrider, A firewall policy is required to allow traffic from dialup IPsec clients to branch B office. In case the issue persists, running debug flow will help in identifying the issue.

Fortinet Community

User Statistics

User Activity

Technical Tip: FortiGate SSL VPN - SMBv2 support

Technical Tip: How to use FortiAnalyzer to detect exploits to FortiOS’s SSL VPN vulnerabilities in CVE-2018-13379, CVE-2019-5591 and CVE-2020-12812

Technical Tip: How to restore VDOM configuration

Technical Tip: Restoring a configuration causes HTTP/HTTPS access failure

Technical Tip: SD-WAN Rules - link-cost-threshold attribute

Re: Ipsec tunnel

Re: Fortigate IPsec Tunnel Up, Some Subnets Are Not Routed Through

Re: Fortigate IPsec Tunnel Up, Some Subnets Are Not Routed Through

Re: Unable to install FortiClient (macOS) 7.2.0 build 0655

Re: VPN access network drive problem

Re: How to get access to this post

Technical Tip: FortiClient licensing and support

Re: routing being blocked because of use

Re: Question on FortiGate HA

Re: MAC device and source zone

Re: MAC device and source zone

Re: Fortigate with older firmware stood new Fortic...

Re: "session clashed" issue in SDWAN configuration

Re: forticlient VPN on MacOS 10.14.6 white blank s...

Re: Setup Fortigate to communicate to Fortiweb