Hi,how could I create firewall rule that allow web access to
"repo.zimbra.com" every time when I ping this site I get respond from
other *.cloudfrond.net server with different ip.I have created a rule
with destination fqdn "repo.zimbra.com" but forti...
Hi,some web pages are not working properly and I see in logs that
Google-Web service is blocked by fortigate with strange 443 port and
protocol 17 UDP. I don't see any App ID that I could allow in App
Control profile for that particular event, have a...
Hi,all my internet facing ipv4 policies have IPS policy where is
settings enabled "Scan Outgoing Connections to Botnet Sites" so it is
needed to have at the top of ipv4 policies that are responsible for
internet traffic policy with action DENY to blo...
Hi,I'm trying to configure custom configuration for dialup forticlient
on windows, in phase1-interface I have configured "mode-cfg : enable"
and "ipv4-name : ipsec_range" this ipsec ip range have adresses from
192.168.30.1-192.168.30.2. Now when serv...
Hi,I have created vpn for native windows client during a setup I chose
subnet range for a client, now I need to change that settings but I
don't see that setting in tunnel settings, even in CLI I don't see this,
where it is applied? Router (VPN_ipsec...
Client (accesing zimbra repo):-dns set to google root@srv:/home/# ping
repo.zimbra.com PING d1bynvv8c88s02.cloudfront.net (54.192.231.13)
56(84) bytes of data. 64 bytes from
server-54-192-231-13.waw50.r.cloudfront.net (54.192.231.13): icmp_seq=1
ttl=...
The problem is that users from Fortigate LAN will be accessing this
server that is connecting using Forticlient, so I need to be sure that
this server have all the time the same ip address. I read your linked
topics about ip reservation, but I have q...
This is strange, with setting "set enforce-ipsec disabled"-when on
windows native client I leave ipsec type as Automatic - then connection
is established but with not encryption only ms-chap-2.-when on native
windows client I choose ipsec as l2tp/ips...
why if I do "set enforce-ipsec enable" in l2tp setting, then my l2tp
connection is not connecting anymore, I would to be sure that this
connection is always encrypted by ipsec tunnel?
