Technical Tip: How to use a VIP's External IP Addr...

nalexiou · 08-01-2025

Description This article describes how to configure multiple TCP Forwarding ZTNA servers. Scope FortiOS. Solution It is possible to configure one TCP Forwarding ZTNA server via the GUI. Once a TCP Forwarding server is added, the option is greyed out,...

nalexiou · 07-02-2025

Description This article describes how to change the order of the NAC-policies by using the CLI. Scope FortiOS. Solution In cases where the GUI cannot be used, the NAC policies order can be modified via CLI by using the commands: 'move before ' and ...

nalexiou · 05-09-2025

Description This article is explaining the behaviour of SoC5 (NP7lite) platforms when vpn-id-ipip encapsulation is configured on IPsec tunnel(s). Scope FortiOS versions earlier than 7.4.8, FortiOS version 7.6.0, FortiOs version 7.2 all. Solution Enca...

nalexiou · 03-03-2025

Description This article describes how to disable the 'Register with FortiCare. This step is required to activate threat protection services and receive firmware & package updates' window in GUI on FortiGate-900G/901G and FortiGate-200G/201G. Scope F...

nalexiou · 02-03-2025

Description This article describes the behavior of the link monitor on the primary and the secondary member(s) of a cluster. Scope FortiGate. Solution In some cases, after failover, the status of the secondary member(s) may vary from the status on th...

nalexiou · 01-13-2025

Hi, By default multipath is disabled, you can refer to the below kb on how to enable multipath: https://community.fortinet.com/t5/FortiGate/Technical-Tip-Usage-of-BGP-multipath-and-description-of-the-BGP/ta-p/195919 After enabling multipath make sure...

nalexiou · 09-30-2022

Hi Afzal, You can check the config for references via cli with the below command: sh | grep -f x.x.x.x where x.x.x.x is the IP Regards, Nikos

nalexiou · 09-13-2022

Hello, You can try the below: config system settings set allow-subnet-overlap enable end This should allow you configure overlapping subnets For more details you may refer to the below kb: https://community.fortinet.com/t5/FortiGate/Technical-Tip-Ena...

nalexiou · 08-04-2022

Hello, You can try to change the action to exempt in the urlfilter. For more details please refer to the below link: https://community.fortinet.com/t5/FortiGate/Technical-Tip-Details-about-quot-pass-quot-and-quot-exempt-quot/ta-p/196171 Best Regards,...

nalexiou · 05-31-2022

Hello, The way to disable a session helper is to actually delete it. Please refer to the below kb: https://community.fortinet.com/t5/FortiGate/Technical-Tip-Enable-and-disable-FortiGate-system-session/ta-p/191762 Deleting it will not have any side ef...

User Statistics

User Activity

Technical Tip: How to add multiple TCP Forwarding ZTNA servers

Technical Tip: How to move NAC policies via CLI

Technical Tip: Packet loss in ipsec tunnel configured with vpn-id-ipip encapsulation on SOC5 (NP7lite) platform.

Technical Tip: How to disable 'Register with FortiCare. This step is required to activate threat protection services and receive firmware & package updates' on FortiGate-900G/901G and FortiGate-200G/201G

Technical Tip: Link monitor behaviour on an HA cluster

Re: BGP MULTPATH

Re: duplicate IP

Re: Loopback IP overlap

Re: web filter proxy mode issue

Re: DNS Session Helper

Technical Tip: How to use a VIP's External IP Addr...

Technical Tip: How to investigate BGP neighborship...

Technical Tip: SD-WAN Rule in Manual mode and Perf...

Technical Tip: Mapping VIP outbound connections (S...

Technical Tip: Configuring FortiGate HA and OSPF g...

Re: BGP MULTPATH

Re: Firewall reset

KCS

User Statistics

User Activity

You are leaving our website