Fortinet Community

mricardez · 07-30-2023

Description This article describes how to deny traffic from LAN devices from using the WAN interface in an SD WAN solution. Scope FOS v7.2.3 and earlier. Solution Usually, the focus of SD WAN solutions is to steer traffic between WAN interfaces using...

mricardez · 07-20-2023

Description This article describes how to reset the FSAE service on Windows devices. Scope FortiGate FSSO. Solution In some situations, it will be necessary to reset or stop the FSAE or CA service of FSSO on Windows devices. If the FSAE is running in...

mricardez · 07-12-2023

Description This article describes how to enable IPv6 support with IPv6. Scope FSAE v5.0.0282 and earlier. Solution FSSO supports IPv6 on the communication between the collector agent and FortiGate, TSAgent, and DCAgent, but also the IPV6 is included...

mricardez · 07-12-2023

Description This article describes how to install the FSAE (also known as the 'Collector Agent') on a PC that belongs to the Windows Domain instead to install it on the AD itself. Scope FSAE v5.0.0289 and earlier. Solution There are some restrictions...

mricardez · 03-02-2023

Description This article describes how to troubleshoot the IPS signature matching which can give visibility of triggered IPS alerts. Scope IPS Engineer v7.0 and earlier. Solution When the UTM IPS profile is enabled in the firewall policies, it is pos...

mricardez · 03-11-2022

Hi The following topology with fortiswitch could be help "HA-mode FortiGate units in different sites" https://docs.fortinet.com/document/fortiswitch/7.0.4/devices-managed-by-fortios/780635/switch-redundancy-with-mclag#HA-mode3 Regards

mricardez · 01-27-2022

Hi, The LACP PDUs are packets on L2, so in order to allow the forward of L2 on fortigate VWP, you can try enabling l2forward at interface level. You also needs to consider forward arp packets. config system interfaceedit set l2forward enableend confi...

mricardez · 01-04-2022

The log entries are addressing the user login and login source from the device detection/identification feature (enabled at the interface). - The logs of uthusersource="kerberos" is collected from traffic kerberos on the authentication process betwee...

Fortinet Community

User Statistics

User Activity

Technical Tip: Deny traffic to a WAN interface on an SD WAN solution

Troubleshooting Tip: Reset the FSAE service on Windows devices

Technical Tip: FSSO IPv6 Support

Technical Tip: Install FSAE on PC instead of AD Windows Server

Troubleshooting Tip: Identify the IPS signature matching context

Re: active-passive deployment in different site

Re: Virtual Wire and LACP

Re: Meaning of unauthuser and unauthusersource

Re: Meaning of unauthuser and unauthusersource

Troubleshooting Tip: Reset the FSAE service on Win...

KCS

Fortinet Training Institute