Description This article describes how the multiplexing and connection
coalescing features of HTTP/2 web traffic can impact Web Filtering and
certificate inspection on the FortiGate, why this is expected, and what
can be done to improve inspection ca...
Description This article describes an expected behavior where the
FortiGate loses DH Groups 1, 2, and 5 in the IPsec tunnel configuration
when upgrading a FIPS-enabled FortiGate from the v7.0 FIPS specialty
firmware to the v7.2/7.4 versions of this f...
Description This article discusses the relatively recent changes to
FIPS-CC mode on the FortiGate when transitioning from FortiOS v7.0 and
earlier to v7.2, v7.4, and later. Scope FortiGate, FIPS-CC. Solution As
a primer, Fortinet produces a specialty...
Description This article describes an expected behavior regarding
RADIUS-based authentication when FIPS-CC mode is enabled on a FortiGate
running FortiOS v7.2 or later. Scope FortiGate. Solution First,
regarding the FIPS 140-2/140-3 transition for Fo...
Description This article describes an expected behavior where the
FortiGate's fnbamd daemon (which typically handles authentication and
certificate validation) may make HTTP (TCP/80) and HTTPS (TCP/443)
connections out to the Internet. Scope FortiGat...
Sorry to necropost, but just to let you know: we've taken your feedback
and had our documentation team update the FortiWiFi/FortiAP
Configuration Guide to better explain the extra steps involved for
LAN-only FortiAPs vs. WAN-LAN equipped FortiAPs.As ...
Piggybacking on what @cyberadius suggested above, we have the following
Community KB articles that cover similar info (I'll leave them here for
future reference): Technical Tip: How to prevent the SSL VPN web login
portal from displaying when SSL VPN...
Hi @SajjadAli-1986, Just to let you know, this is the Article Ideas
Submission queue, which is used to submit new KB article ideas. For
technical assistance, please either post to the Fortinet Support Forum
or open a ticket with Fortinet TAC Support....
Hi Faiza_Emam_Delhi, can you clarify where (FortiGate, FortiSwitch
directly, FortiManager, etc.) and on what firmware you were able to
perform these steps? I checked on FortiOS 6.4, 7.0, 7.2, and 7.4, and
none of them have the capability that you are...
I recommend checking out these Community KB articles for SSL-VPN and
IPsec:https://community.fortinet.com/t5/FortiGate/Technical-Tip-Enabling-split-tunnel-feature-for-SSL-VPN/ta-p/198108https://community.fortinet.com/t5/FortiGate/Technical-Tip-Enable...
