Description This article describes how to control TLS1.2 cipher suites
for HTTPS administrative access. Scope FortiGate v7.2v and v7.4.1.
Solution By default, when strong-crypto is enabled, the cipher suites
are listed below: To disable the following...
Description This article describes how to remove the usage of a firewall
sniffer for the system interface post-firmware upgrade to version
7.2/7.4. Scope FortiGate v7.2, 7.4. Solution Before version 7.2, the
packet capture GUI interface was as below:...
Description This article describes how to setup DNS Database(Split DNS)
for SSL VPN Client. Scope FortiGate. Solution Diagram: Internet ----
------ [Port1]FortiGate[Port3 IP
x.x.3.23]----------Internal 1) Enable 'DNS Database' from Feature
Description This article explains the mac address behavior when the
source server from the primary IP network reaches to destination server
on a secondary IP network. Scope FortiGate. Solution FortiGate's
physical interface has 2 IP networks: Primary...
Description This article describes the scenario for VIP port forwarding
in an NGFW policy-based central NAT setup. Scope FortiGate Central NAT.
Solution In the scenario of 2 DNATs are configured. One DNAT with port
forwarding but the other DNAT witho...
Hi slouw, You need to add interface member into SD-WAN zone. Please
check the following administrative guide for SD-WAN quick start.
Hi Jafif, Security rating checks by default are scheduled to run
automatically every four hours. Please refer to the following document
to disable the automatic security checks:
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.