DescriptionThis article explains how to block access to some Google
accounts and services while allowing access to accounts in the domains
in the exception list.Device should be in 'Proxy-based' Inspection
mode.SolutionTo enable this feature in the G...
DescriptionThis article explains how to check the Internet Service
Database for specific IP address.SolutionBelow is the command that can
be used to search ISDB for specific IP address:# diagnose
internet-service match Example:# diagnose
DescriptionThis article describes how to configure per-VDOM
administrator accounts to only allow administrative access to specific
VDOMs. For example per-VDOM administrators will allow both Company A and
Company B to manage their respective VDOMs wit...
DescriptionThis article describes how in FortiOS v6 onwards security
Profiles can be configured globally across multiple VDOMs, some or all
profiles may be commonly-shared across VDOMSSolutionGlobal profiles are
configured under Global > Security Pro...
Hi bob654, As per the sniffer info you shared from local FGT, packet
seems to leave interface vpn but the actual packet process is seen in
debuging traffic flow. Setup below putty sessions on both FGT 1st and
then initiate the traffic from local to r...
Hi JakeBlues We didnt get the output for the commands in putty 1
session.Putty 1: diag debug reset diag debug en diag debug console
timestamp enable diag debug flow filter clear diag debug flow filter
addr X.X.X.X <<------[Replace X.X.X.X with Destin...
Hi JakeBlues Connect your VPN client and then open putty to FGT device
and run below commands: Putty 1: diag debug reset diag debug en diag
debug console timestamp enable diag debug flow filter clear diag debug
flow filter addr X.X.X.X <<------[Repla...
Hi Christian_89 Please elaborate your requirement in detail: > will the
FGT do user auth OR it will just be a mediator to pass traffic to
internal server> when you say user auth on https, are you trying to
access FGT from wan or server? Thanks
Hi cybernet2025 Please run below commands on FGT if you still have
issues and share output: >connect to your fortigate, execute the below
commands and then initiate the connection via Forticlientdiag debug
resetdi vpn ssl debug-filter src-addr4 x.x.x...