Fortinet Community

ntaneja · 09-11-2019

Description This article explains how to block access to some Google accounts and services while allowing access to accounts in the domains in the exception list. Note:Device should be in 'Proxy-based' Inspection mode. SSL (Deep) Inspection is Mandat...

ntaneja · 09-11-2019

Description This article describes how to check the Internet Service Database for specific IP addresses.Solution Below is the command that can be used to search ISDB for specific IP addresses: diagnose internet-service match Example: diagnose inte...

ntaneja · 04-03-2019

DescriptionThis article describes how to configure per-VDOM administrator accounts to only allow administrative access to specific VDOMs. For example per-VDOM administrators will allow both Company A and Company B to manage their respective VDOMs wit...

ntaneja · 04-02-2019

DescriptionThis article describes how in FortiOS v6 onwards security Profiles can be configured globally across multiple VDOMs, some or all profiles may be commonly-shared across VDOMSSolutionGlobal profiles are configured under Global > Security Pro...

ntaneja · 08-01-2022

Hi NGG You can run debug commands on both FGT and check the traffic flow on src and dst fortigate devices diag debug reset diag debug en diag debug console timestamp enable diag debug flow filter clear diag debug flow filter addr diag debug flow filt...

ntaneja · 07-17-2022

Hi Ydaew Can you configure your 3389 rule and then run below commands on FGT for 443 traffic and share: Putty 1: di de reset di de di diag debug console timestamp enable diag debug flow filter clear diag debug flow filter addr X.X.X.X <<------[Replac...

ntaneja · 07-16-2022

Hi Beeradmin Great that you found and fix the issue. Below is the link you can keep handy for IPSEC troubleshooting in case you need anytime in future https://community.fortinet.com/t5/FortiGate/Technical-Tip-Troubleshooting-IPsec-VPNs/ta-p/195955 Th...

ntaneja · 07-16-2022

Hi Ydaew Please share screenshot of the VIP configured for server A and server B traffic on FGT Just to confirm the requirement, you want the traffic hitting FW for External IP , port 3389 should be forwarded to server B you want the traffic hitting ...

ntaneja · 07-16-2022

Hi Xenitel Let us know if you are using HA mgmt interface to access the device or some other way?If HA mgmt interface, you need reserved mgmt interface IP to access both devicehttps://community.fortinet.com/t5/FortiGate/Technical-Tip-HA-Reserved-Mana...

Fortinet Community

User Statistics

User Activity

Technical Tip: Restrict Google account usage to specific domains

Technical Tip: How to search ISDB using IP address

Technical Tip : Creating per-VDOM administrators

Technical Tip: Configuring global security profiles

Re: Not Sending syslogs from 60F to different segment

Re: Fortigate VIPs behaviour

Re: Multisite traffic over IPSEC VPN Issue.

Re: Fortigate VIPs behaviour

Re: Access to both firewalls in HA

Re: command

Re: IPSec Tunnel with NAT - packets not received

Re: Fortigate VM on eve-ng with SSL VPN

Re: SD WAN with 2 link, and one link with no SD WA...

Re: Access to both firewalls in HA

Re: SSL VPN to Site2Site VPN

Re: command

KCS

Fortinet Training Institute