Technical Tip: How to use a VIP's External IP Addr...

nalexiou · 12-05-2025

Description This article describes how to troubleshoot the ESP packet loss and provides possible solutions for this issue. Scope FortiOS. Solution To identify if the ESP packets are sent and received, a sniffer can be used. The commands below will ca...

nalexiou · 11-24-2025

Description This article describes the behavior when the command 'execute router clear ospf' is executed and a graceful restart is configured. Scope FortiGate. Solution The graceful restart (as described in Technical Tip: Configuring FortiGate HA and...

nalexiou · 09-18-2025

Description This article describes a technical issue with FortiGate devices where the MAC address of the gateway is advertised behind its port, causing the MAC address to bounce between ports on a connected Cisco switch. The issue is specific to Fort...

nalexiou · 08-01-2025

Description This article describes how to configure multiple TCP Forwarding ZTNA servers. Scope FortiOS. Solution It is possible to configure one TCP Forwarding ZTNA server via the GUI. Once a TCP Forwarding server is added, the option is greyed out,...

nalexiou · 07-02-2025

Description This article describes how to change the order of the NAC-policies by using the CLI. Scope FortiOS. Solution In cases where the GUI cannot be used, the NAC policies order can be modified via CLI by using the commands: 'move before ' and ...

nalexiou · 01-13-2025

Hi, By default multipath is disabled, you can refer to the below kb on how to enable multipath: https://community.fortinet.com/t5/FortiGate/Technical-Tip-Usage-of-BGP-multipath-and-description-of-the-BGP/ta-p/195919 After enabling multipath make sure...

nalexiou · 09-30-2022

Hi Afzal, You can check the config for references via cli with the below command: sh | grep -f x.x.x.x where x.x.x.x is the IP Regards, Nikos

nalexiou · 09-13-2022

Hello, You can try the below: config system settings set allow-subnet-overlap enable end This should allow you configure overlapping subnets For more details you may refer to the below kb: https://community.fortinet.com/t5/FortiGate/Technical-Tip-Ena...

nalexiou · 08-04-2022

Hello, You can try to change the action to exempt in the urlfilter. For more details please refer to the below link: https://community.fortinet.com/t5/FortiGate/Technical-Tip-Details-about-quot-pass-quot-and-quot-exempt-quot/ta-p/196171 Best Regards,...

nalexiou · 05-31-2022

Hello, The way to disable a session helper is to actually delete it. Please refer to the below kb: https://community.fortinet.com/t5/FortiGate/Technical-Tip-Enable-and-disable-FortiGate-system-session/ta-p/191762 Deleting it will not have any side ef...

User Statistics

User Activity

Technical Tip: How to troubleshoot ESP packet loss and possible solutions

Technical Tip: OSPF Graceful restart not sending Opaque LSA when executing the command 'execute router clear ospf'

Troubleshooting Tip: FortiGate MAC address issue with VLAN-switch configuration

Technical Tip: How to add multiple TCP Forwarding ZTNA servers

Technical Tip: How to move NAC policies via CLI

Re: BGP MULTPATH

Re: duplicate IP

Re: Loopback IP overlap

Re: web filter proxy mode issue

Re: DNS Session Helper

Technical Tip: How to use a VIP's External IP Addr...

Technical Tip: How to disable 'Register with Forti...

Technical Tip: How to investigate BGP neighborship...

Technical Tip: SD-WAN Rule in Manual mode and Perf...

Technical Tip: Mapping VIP outbound connections (S...

Re: BGP MULTPATH

Re: Firewall reset

KCS

User Statistics

User Activity

You are leaving our website