Technical Tip: How to use a VIP's External IP Addr...

nalexiou · 11-24-2025

Description This article describes the behavior when the command 'execute router clear ospf' is executed and a graceful restart is configured. Scope FortiGate. Solution The graceful restart (as described in Technical Tip: Configuring FortiGate HA and...

nalexiou · 09-18-2025

Description This article describes a technical issue with FortiGate devices where the MAC address of the gateway is advertised behind its port, causing the MAC address to bounce between ports on a connected Cisco switch. The issue is specific to Fort...

nalexiou · 08-01-2025

Description This article describes how to configure multiple TCP Forwarding ZTNA servers. Scope FortiOS. Solution It is possible to configure one TCP Forwarding ZTNA server via the GUI. Once a TCP Forwarding server is added, the option is greyed out,...

nalexiou · 07-02-2025

Description This article describes how to change the order of the NAC-policies by using the CLI. Scope FortiOS. Solution In cases where the GUI cannot be used, the NAC policies order can be modified via CLI by using the commands: 'move before ' and ...

nalexiou · 05-09-2025

Description This article is explaining the behaviour of SoC5 (NP7lite) platforms when vpn-id-ipip encapsulation is configured on IPsec tunnel(s). Scope FortiOS versions earlier than 7.4.8, FortiOS version 7.6.0, FortiOs version 7.2 all. Solution Enca...

nalexiou · 01-13-2025

Hi, By default multipath is disabled, you can refer to the below kb on how to enable multipath: https://community.fortinet.com/t5/FortiGate/Technical-Tip-Usage-of-BGP-multipath-and-description-of-the-BGP/ta-p/195919 After enabling multipath make sure...

nalexiou · 09-30-2022

Hi Afzal, You can check the config for references via cli with the below command: sh | grep -f x.x.x.x where x.x.x.x is the IP Regards, Nikos

nalexiou · 09-13-2022

Hello, You can try the below: config system settings set allow-subnet-overlap enable end This should allow you configure overlapping subnets For more details you may refer to the below kb: https://community.fortinet.com/t5/FortiGate/Technical-Tip-Ena...

nalexiou · 08-04-2022

Hello, You can try to change the action to exempt in the urlfilter. For more details please refer to the below link: https://community.fortinet.com/t5/FortiGate/Technical-Tip-Details-about-quot-pass-quot-and-quot-exempt-quot/ta-p/196171 Best Regards,...

nalexiou · 05-31-2022

Hello, The way to disable a session helper is to actually delete it. Please refer to the below kb: https://community.fortinet.com/t5/FortiGate/Technical-Tip-Enable-and-disable-FortiGate-system-session/ta-p/191762 Deleting it will not have any side ef...

User Statistics

User Activity

Technical Tip: OSPF Graceful restart not sending Opaque LSA when executing the command 'execute router clear ospf'

Troubleshooting Tip: FortiGate MAC address issue with VLAN-switch configuration

Technical Tip: How to add multiple TCP Forwarding ZTNA servers

Technical Tip: How to move NAC policies via CLI

Technical Tip: Packet loss in ipsec tunnel configured with vpn-id-ipip encapsulation on SOC5 (NP7lite) platform.

Re: BGP MULTPATH

Re: duplicate IP

Re: Loopback IP overlap

Re: web filter proxy mode issue

Re: DNS Session Helper

Technical Tip: How to use a VIP's External IP Addr...

Technical Tip: How to disable 'Register with Forti...

Technical Tip: How to investigate BGP neighborship...

Technical Tip: SD-WAN Rule in Manual mode and Perf...

Technical Tip: Mapping VIP outbound connections (S...

Re: BGP MULTPATH

Re: Firewall reset

KCS

User Statistics

User Activity

You are leaving our website