Fortinet Community

nalexiou · 11-25-2022

Description This article explains how to configure a static route and a black hole route to different VRFs. Scope All versions of FortiOS. Solution To configure a static route to a different VRF, first configure the VRF ID on the relevant interface: ...

nalexiou · 09-08-2022

Description This article describes the behavior of the SD-WANrules configured in manual mode when the performance sla for the interface is failing. Scope FortiOs . Solution If all health-check are indicating that an interface is dead, even if it is u...

nalexiou · 02-24-2022

Description This article explains how to resolve connectivity issues of the Fabric connector to Forticlient EMS Cloud when SDWAN is used.This solution applies in FortiOs v6.4.4-v6.4.8 Scope FortiOs v6.4.4-6.4.8 Solution The Self-originating traffic t...

nalexiou · 12-29-2021

Description This article describes how to configure multicast policies between interfaces that are members of the same zone. Scope Solution Configure 'set intrazone allow' on the zone. # config system zon edit set intrazone allow nextend Configure a...

nalexiou · 12-10-2021

Description This article describes the difference in the behavior of static and dynamic tunnels when there is a device performing NAPT between the ipsec peers. Scope Fortios Solution Topology: FGT B (85.130.205.233) --- (194.110.190.51) NAPT --- (194...

nalexiou · 09-30-2022

Hi Afzal, You can check the config for references via cli with the below command: sh | grep -f x.x.x.x where x.x.x.x is the IP Regards, Nikos

nalexiou · 09-13-2022

Hello, You can try the below: config system settings set allow-subnet-overlap enable end This should allow you configure overlapping subnets For more details you may refer to the below kb: https://community.fortinet.com/t5/FortiGate/Technical-Tip-Ena...

nalexiou · 08-04-2022

Hello, You can try to change the action to exempt in the urlfilter. For more details please refer to the below link: https://community.fortinet.com/t5/FortiGate/Technical-Tip-Details-about-quot-pass-quot-and-quot-exempt-quot/ta-p/196171 Best Regards,...

nalexiou · 05-31-2022

Hello, The way to disable a session helper is to actually delete it. Please refer to the below kb: https://community.fortinet.com/t5/FortiGate/Technical-Tip-Enable-and-disable-FortiGate-system-session/ta-p/191762 Deleting it will not have any side ef...

nalexiou · 05-16-2022

Hello, You should also check if you lt2p subnet is allowed on the phase2 selectors of the site to site tunnel.It also might be a policy or routing issue.You can collect a debug flow and see why the traffic is not processed.You can collect the output ...

Fortinet Community

User Statistics

User Activity

Technical Tip: Configure static routes and black hole routes to different VRFs

Technical Tip: SD-WAN rule in manual mode and Performance SLA

Technical Tip: Fabric Connector to Forticlient EMS Cloud and SDWAN

Technical Tip: How to configure multicast policy for interfaces in the same zone

Technical Tip: NAT-traversal comparison between site-to-site and dial-up” dynamic” tunnels

Re: duplicate IP

Re: Loopback IP overlap

Re: web filter proxy mode issue

Re: DNS Session Helper

Re: Access site behind Site-to-Site tunnel via. L2TP Remote Access (Windows Native)

Technical Tip: SD-WAN rule in manual mode and Perf...

Re: Firewall reset

Technical Tip: Configuring FortiGate HA and OSPF g...

Re: Firewall reset

Broad. Integrated. Automated.

Security Research

Company

News & Articles

Contact Us