Technical Tip: How to increase memory buffer for p...

athirat · 11-29-2024

Description This article describes how to use FortiAuthenticator as a CMPv2 server to rollout 3GPP certificates to FortiGates in SecGw for mobile network deployments. Scope FortiGate v6.2.x onwards, FortiAuthenticator v6.6.x onwards. Solution Find th...

athirat · 09-16-2024

Description This article describes how to enable support for GTP-U sessions with dynamic source ports and how the GTP-U session would look like if this feature is enabled. By default, FortiGate tracks sessions using a 5-tuple system: source port, des...

athirat · 06-24-2024

Description This article describes how to prevent the sending of 'subtype=fgfm' logs from FortiManager to the syslog server. Scope FortiManager. Solution By default, the below logs highlighting fgfm connection changes between FortiManager and managed...

athirat · 06-24-2024

Description This article describes how to fix issues with DHCP relay setups not working after upgrading to FortiOS v7.0.1 onwards when local-in policies are in use. Scope FortiOS v7.0.1 onwards. Solution After the upgrade of FortiGate setup as DHCP r...

athirat · 05-02-2023

Description This article describes issues that occur during VPN establishment due to 'signature verification failed' errors in IKE debug logs for an IKEv2 certificate based IPsec VPN. Scope All versions of FortiGate. Solution This error is seen if Fo...

athirat · 11-21-2021

Could you share the below configuration snippet : show sys dhcp server RegardsAthira

athirat · 11-17-2021

Hello, Based on the description, issue could be due to the fact there is no route available/active towards the VPN remote gateway via wan2 in the routing-table. This is why it works when you add wan2 into SDWAN (since default route via wan2 gets acti...

athirat · 11-17-2021

Hello, Once HA reserved management interfaces are added on FGT , they are automatically mapped to a hidden vdom called vsys_hamgmt. The routing and ARP details on HA dedicated management interface are solely available in this vdom.You can check the r...

User Statistics

User Activity

Technical Tip : How to generate a 3GPP certificate on FortiGate using FortiAuthenticator as the CMPv2 server

Technical Tip: How to enable support for GTP-U sessions with dynamic source ports

Technical Tip: How to prevent syslog logging of local fgfm connection related events from FortiManager

Troubleshooting Tip: DHCP Discover packets dropped despite dhcp-relay-service enabled on ingress interface after upgrading FortiOS to v7.0.1 and above

Technical Tip: Understanding 'signature verification failed' errors in IKE debug logs in an IKEv2 certificate based IPsec VPN

Re: Problem adding DHCP option, says option is in use

Re: Ipsec and SD-WAN

Re: HA reserved management interfaces in a different VRF

Technical Tip: How to increase memory buffer for p...

Technical Tip: How to limit the SSL and TLS versio...

Technical Tip: Authentication fails with 'clock sk...

Technical Tip: How FortiGate handles 'Untrusted SS...

Re: HA reserved management interfaces in a differe...

Fortinet Training Institute

KCS

User Statistics

User Activity

You are leaving our website