Fortinet Community

btey · 11-06-2023

Description This article describes how to control TLS1.2 cipher suites for HTTPS administrative access. Scope FortiGate v7.2v and v7.4.1. Solution By default, when strong-crypto is enabled, the cipher suites are listed below: To disable the following...

btey · 07-09-2023

Description This article describes how to remove the usage of a firewall sniffer for the system interface post-firmware upgrade to version 7.2/7.4. Scope FortiGate v7.2, 7.4. Solution Before version 7.2, the packet capture GUI interface was as below:...

btey · 05-28-2023

Description This article describes how to setup DNS Database(Split DNS) for SSL VPN Client. Scope FortiGate. Solution Diagram: Internet ---- ------ [Port1]FortiGate[Port3 IP x.x.3.23]----------Internal 1) Enable 'DNS Database' from Feature Visibilit...

btey · 03-12-2023

Description This article explains the mac address behavior when the source server from the primary IP network reaches to destination server on a secondary IP network. Scope FortiGate. Solution FortiGate's physical interface has 2 IP networks: Primary...

btey · 01-05-2023

Description This article describes the scenario for VIP port forwarding in an NGFW policy-based central NAT setup. Scope FortiGate Central NAT. Solution In the scenario of 2 DNATs are configured. One DNAT with port forwarding but the other DNAT witho...

btey · 11-13-2023

Hi slouw, You need to add interface member into SD-WAN zone. Please check the following administrative guide for SD-WAN quick start. https://docs.fortinet.com/document/fortigate/7.4.1/administration-guide/218559/configuring-the-sd-wan-interface

btey · 07-11-2023

Hi Jafif, Security rating checks by default are scheduled to run automatically every four hours. Please refer to the following document to disable the automatic security checks: https://docs.fortinet.com/document/fortigate/7.4.0/administration-guide/...

btey · 07-10-2023

Hi BusinessUser, That is the naming convention in the flash partition. Please refer to the build number for confirmation. Thank you.

btey · 07-09-2023

Hi BusinessUser, For sys flash list, example as below: xxxx-6.00-FW-build0272 <<<<

btey · 07-05-2022

Please ensure the CA certificate is correct. You may perform packet capture for the LDAP connection to get more detail.

Fortinet Community

User Statistics

User Activity

Technical Tip: How to remove cipher suites other than GCM cipher suites (TLS1.2)

Technical Tip: How to remove system interface reference (firewall sniffer) post firmware upgrade

Technical Tip: Setup DNS Database (Split DNS) for SSL VPN client

Technical Tip: Mac address behavior for secondary IP address

Technical Tip: VIP/DNAT port forwarding not working (NGFW Policy based central NAT)

Re: How is SD-WAN enabled

Re: Constant security rating summary

Re: Firmware "Disappear" When Upgrading Firewall?

Re: Firmware "Disappear" When Upgrading Firewall?

Re: Can't contact LDAP server Fortigate60F

Re: How is SD-WAN enabled

Technical Tip: DHCP Secondary DNS server Option

Technical Tip: How to remove cipher suites other t...

Re: Firmware "Disappear" When Upgrading Firewall?

Technical Tip: VIP/DNAT port forwarding not workin...

Re: How is SD-WAN enabled

Re: Firmware "Disappear" When Upgrading Firewall?

KCS