Technical Tip: ERR_SSL_PROTOCOL_ERROR when using F...

pjang · 06-11-2025

Description This article discusses the concept of a 'break glass' administrator account, as well as some reasons for why admins should configure one on the FortiGate. This article also discusses some general risks to keep in mind when using more adva...

pjang · 06-09-2025

Description This article describes a known behavior where the FortiGate SSL VPN will set/grant HTTP cookies that have the 'expires' attribute applied as part of the login/logout process. Administrators may see this flagged while performing security s...

pjang · 05-14-2025

Description This article discusses the tamper-evident seals required on the FortiGate as part of FIPS 140-2 and 140-3 Security Level 2 requirements. Scope FortiGate, FIPS. Solution As per the FIPS 140-2/140-3 'Physical Security' requirements section,...

pjang · 04-17-2025

Description This article describes a known issue that occurs with hardware-offloading when IPsec VPN tunnels are terminated/listening on NPU VDOM links (also known as npu_vlinks). This issue will also occur if the IPsec tunnel is listening on a VLAN ...

pjang · 04-15-2025

Description This article describes an expected behavior with the VMware ESXi External Fabric Connector on the FortiGate where it retrieves some (but not all) networks from VMware vSphere due to naming restrictions. Scope FortiGate. Solution As a prim...

pjang · 06-18-2025

Sorry to necropost, but just to let you know: we've taken your feedback and had our documentation team update the FortiWiFi/FortiAP Configuration Guide to better explain the extra steps involved for LAN-only FortiAPs vs. WAN-LAN equipped FortiAPs.As ...

pjang · 03-13-2025

Piggybacking on what @cyberadius suggested above, we have the following Community KB articles that cover similar info (I'll leave them here for future reference): Technical Tip: How to prevent the SSL VPN web login portal from displaying when SSL VPN...

pjang · 11-04-2024

Hi @SajjadAli-1986, Just to let you know, this is the Article Ideas Submission queue, which is used to submit new KB article ideas. For technical assistance, please either post to the Fortinet Support Forum or open a ticket with Fortinet TAC Support....

pjang · 01-15-2024

Hi Faiza_Emam_Delhi, can you clarify where (FortiGate, FortiSwitch directly, FortiManager, etc.) and on what firmware you were able to perform these steps? I checked on FortiOS 6.4, 7.0, 7.2, and 7.4, and none of them have the capability that you are...

pjang · 08-11-2022

I recommend checking out these Community KB articles for SSL-VPN and IPsec:https://community.fortinet.com/t5/FortiGate/Technical-Tip-Enabling-split-tunnel-feature-for-SSL-VPN/ta-p/198108https://community.fortinet.com/t5/FortiGate/Technical-Tip-Enable...

User Statistics

User Activity

Technical Tip: Create a 'break glass' admin account on the FortiGate as a backup for remote authentication/MFA (Recommendation)

Technical Tip: FortiGate SSL VPN sets cookies with the 'expires' attribute (known behavior)

Technical Tip: FIPS 140-2 Tamper Evident Seals for the FortiGate

Technical Tip: FortiGate NPU does not hardware-offload IPsec tunnels terminated on NPU VDOM links (Known Issue)

Technical Tip: VMware ESXi External Connector on FortiGate cannot retrieve networks with special characters in their names

Re: FAP 231F/431F: Bridging VLAN/SSID to second LAN port

Re: Disable SSLVPN webportal page

Re: Fortigate 200F Firmware recovery - Status changed to: Declined

Re: How to export a fortiswitch configuration in table format (expecially port assignments)?

Re: Split Tunnel

Technical Tip: ERR_SSL_PROTOCOL_ERROR when using F...

Technical Tip: Assigning Priority to SD WAN Member...

Technical Tip: Configuring SSL-VPN to allow tunnel...

Technical Tip: FortiGate Cloud Remote Access funct...

Technical Tip: Understanding the link-down-failove...

Re: SSLVPN no outbound access

KCS

User Statistics

User Activity

You are leaving our website