Fortinet Community

pjang · 07-27-2023

Description This article describes the basic requirements that must be met when configuring LACP between HA FortiGates and Nexus Switches configured for vPC. Scope FortiGate (all models/versions); Cisco Nexus switches. Solution As a primer, LACP link...

pjang · 06-05-2023

Description This article discusses a previously undocumented limitation about how many interfaces can be set when configuring Multicast Routing on the FortiGate (i.e. via PIM sparse-mode). The article also discusses the functional effects of this lim...

pjang · 04-17-2023

Description This article describes the general requirements for configuring NAT46 and NAT64 when using NGFW Policy-mode (which also includes Central-SNAT) on FortiOS 7.0.1 and later. In FortiOS 7.0.1, the NAT46/NAT64 features underwent a major redesi...

pjang · 03-23-2023

Description This article describes how to configure the FortiGate with an External Connector using the STIX/TAXII protocol. AlienVault (aka Alien Labs Open Threat Exchange) is the threat-feed provider used in this article as an example, and so the st...

pjang · 12-22-2022

Description This article describes the authentication-related limitations that an administrator will encounter when configuring the Wireless SSID for WPA2-Enterprise and Local Authentication on the FortiGate, rather than using the RADIUS Server authe...

pjang · 08-11-2022

I recommend checking out these Community KB articles for SSL-VPN and IPsec:https://community.fortinet.com/t5/FortiGate/Technical-Tip-Enabling-split-tunnel-feature-for-SSL-VPN/ta-p/198108https://community.fortinet.com/t5/FortiGate/Technical-Tip-Enable...

pjang · 04-22-2022

Unless I'm missing something, it looks to me like Source NAT isn't turned on for Policy 15, the SSL-VPN to Internet policy.You're using a full-tunnel SSL-VPN (set split-tunneling disable), so all traffic is shuttled over the VPN in this case, but you...

Fortinet Community

User Statistics

User Activity

Technical Tip: Connecting HA FortiGates to Cisco Nexus switches using LACP Aggregate interfaces and Virtual Port Channels (vPCs)

Technical Tip: Limitations with PIM-SM Multicast-Routing on FortiOS (number of active listening interfaces)

Technical Tip: Configuring NAT46/NAT64 with NGFW Policy-Mode enabled (FortiOS 7.0.1 and later)

Technical Tip: Configuring STIX/TAXII External Connectors on the FortiGate with AlienVault as the provider

Technical Tip: Limitations when using WPA2-Enterprise WiFi with LDAP and Local Authentication

Re: Split Tunnel

Re: SSLVPN no outbound access

Technical Tip: Assigning Priority to SD WAN Member...

Technical Tip: Configuring SSL-VPN to allow tunnel...

Technical Tip: Configuring NAT46/NAT64 with NGFW P...

Troubleshooting Tip: Common problems and causes wh...

Technical Tip: Configuring STIX/TAXII External Con...

Re: SSLVPN no outbound access

KCS