Description This article describes the method to generate ICMP
unreachable logs and the policy matching. Scope FortiGate. Solution To
generate ICMP log message: config log setting set log-invalid-packet
enable end The ICMP log is generated as below: ...
Description This article provides the solution when getting the below
error in the SMS gateway (HTTPS protocol) 'Unable to send a text
message: HTTP request failed (url: https://x.x.x.x/, status: 0, res: ).
Please check your configuration'. Scope For...
Description This article describes how to roll back to a previous
firmware version after following a multiple upgrade path. A downgrade
from the flash partition can load the previous configuration. (It does
not include the configuration made after th...
Description This article describes how to control TLS1.2 cipher suites
for HTTPS administrative access. Scope FortiGate v7.2v and v7.4.1.
Solution By default, when strong-crypto is enabled, the cipher suites
are listed below: To disable the following...
Description This article describes how to remove the usage of a firewall
sniffer for the system interface post-firmware upgrade to version
7.2/7.4. Scope FortiGate v7.2, 7.4. Solution Before version 7.2, the
packet capture GUI interface was as below:...
Hi slouw, You need to add interface member into SD-WAN zone. Please
check the following administrative guide for SD-WAN quick start.
https://docs.fortinet.com/document/fortigate/7.4.1/administration-guide/218559/configuring-the-sd-wan-interface
Hi Acxelsus, What is firewall firmware version? You may try to run
httpsd debug to check the LDAPS negotiation or you may try disable
server-identity-check config user ldapedit xxx>>> Server Nameset
server-identity-check disableend For httpsd debug: ...