Technical Tip: MAC address check on SSL VPN connec...

lestopace · 10-11-2022

Description This article describes how to configure HA failover delay when monitored interface go down. Scope FortiGate 7.0 and above. Solution In the following example, the failover-hold-time has been set to 30 seconds. The value can be set from 0 t...

lestopace · 10-11-2022

Description This article explains the message about FortiGate HA enrolled in FortiCloud where the slave unit shows its management tunnel status as down. Scope FortiGate and FortiCloud. Solution Problem: This is an expected behavior. Since the slave u...

lestopace · 10-02-2022

Description This article describes how to identify the direction of frames in a packet capture when using 'any' interface when running 'diagnose sniffer command'. The following scenario uses UDP an example and transparent mode FortiGate. Scope FortiG...

lestopace · 10-02-2022

Description This article describes the OSPF behavior when introducing a new router that has a higher router ID and priority to the OSPF neighborship in the same broadcast domain. Scope FortiGate. Solution Problem. In the following scenario, VDOM1 and...

lestopace · 10-02-2022

Description This article describes how to configure TTL security policy for BGP. Scope FortiGate. Solution Problem. Referring to the image below, even though 10.122.2.155 is not a valid eBGP neighbor, 10.1.1.1 still responded SYN-ACK packets to the S...

lestopace · 07-02-2022

https://community.fortinet.com/t5/FortiGate/Technical-Tip-Generate-and-sign-certificates-using-OpenSSL-in/ta-p/208899If I'm not mistaken, you just need to follow step 1 then upload it to your FortiGate as CA certificate along with the private key.

lestopace · 06-09-2022

Not pim sparse-dense mode per se but you may want to consider using BSR https://docs.fortinet.com/document/fortigate/6.0.0/handbook/920118/example-pim-configuration-that-uses-bsr-to-find-the-rp

User Statistics

User Activity

Technical Tip: How to configure HA failover delay for monitored ports

Technical Tip: FortiGate slave unit shows management tunnel is down message in FortiCloud

Technical Tip: How to identify the direction of frames in a packet capture

Technical Tip: OSPF behavior when introducing new router with higher router ID or priority

Technical Tip: Configuring TTL Security Policy for BGP

Re: Sing a fortigate CSR with OpenSSL (Linux)

Re: PIM sparse-dense mode and Fortigate FW

Technical Tip: MAC address check on SSL VPN connec...

Technical Tip: Extracting certificates from SSL/TL...

Technical Tip: Configuring TTL Security Policy for...

Technical Tip: Decrypting SSL/TLS traffic captured...

Technical Tip: How to implement Indicators Of Comp...

KCS