Technical Tip: ERR_SSL_PROTOCOL_ERROR when using F...

pjang · 12-09-2024

Description This article provides a list of resources/links regarding Federal Information Processing Standards (FIPS) support with the FortiGate/FortiOS (aka FIPS 140-2/140-3 and FIPS-CC, or Common Criteria). Scope FortiGate, FIPS. Solution FIPS-rela...

pjang · 12-05-2024

Description This article describes a known behavior that can occur when FortiToken Mobile Push (also known as 'FTM-Push' and 'FTM' in the GUI/CLI) is enabled on a network interface and is also using the same listening port as the Administrative Web G...

pjang · 12-02-2024

Description This article discusses a known-behavior with FortiView and NP7 hardware logging on Hyperscale-enabled FortiGates. Scope Hyperscale-enabled FortiGates. Solution As a quick primer, NP7-based FortiGates with Hyperscale licenses applied unloc...

pjang · 11-20-2024

Description This article describes how to configure User Groups on the FortiGate to match multiple Remote Groups (i.e. those based on LDAP, RADIUS, SAML, and TACACS+) using both the FortiOS Web GUI and the CLI. This can be particularly useful when mu...

pjang · 11-13-2024

Description This article describes how to allow/block FortiClient users to connect to the FortiGate VPN (IPsec or SSL VPN) based on the software version of FortiClient they have available. This might be useful for administrators looking to enforce a ...

pjang · 11-04-2024

Hi @SajjadAli-1986, Just to let you know, this is the Article Ideas Submission queue, which is used to submit new KB article ideas. For technical assistance, please either post to the Fortinet Support Forum or open a ticket with Fortinet TAC Support....

pjang · 01-15-2024

Hi Faiza_Emam_Delhi, can you clarify where (FortiGate, FortiSwitch directly, FortiManager, etc.) and on what firmware you were able to perform these steps? I checked on FortiOS 6.4, 7.0, 7.2, and 7.4, and none of them have the capability that you are...

pjang · 08-11-2022

I recommend checking out these Community KB articles for SSL-VPN and IPsec:https://community.fortinet.com/t5/FortiGate/Technical-Tip-Enabling-split-tunnel-feature-for-SSL-VPN/ta-p/198108https://community.fortinet.com/t5/FortiGate/Technical-Tip-Enable...

pjang · 04-22-2022

Unless I'm missing something, it looks to me like Source NAT isn't turned on for Policy 15, the SSL-VPN to Internet policy.You're using a full-tunnel SSL-VPN (set split-tunneling disable), so all traffic is shuttled over the VPN in this case, but you...

User Statistics

User Activity

Technical Tip: FortiOS FIPS Resource List

Troubleshooting Tip: Enabling FortiToken Mobile on the FortiGate interface can allow Web GUI access when both services use the same port number

Technical Tip: Hyperscale Hardware Logs do not appear in FortiView on the FortiGate

Technical Tip: Configuring User Groups to match multiple Remote Groups on the FortiGate

Technical Tip: Blocking FortiGate VPN access based on FortiClient Version

Re: Fortigate 200F Firmware recovery - Status changed to: Declined

Re: How to export a fortiswitch configuration in table format (expecially port assignments)?

Re: Split Tunnel

Re: SSLVPN no outbound access

Technical Tip: ERR_SSL_PROTOCOL_ERROR when using F...

Technical Tip: Assigning Priority to SD WAN Member...

Technical Tip: Configuring SSL-VPN to allow tunnel...

Technical Tip: FortiGate Cloud Remote Access funct...

Technical Tip: How to block access to IPFS (InterP...

Re: SSLVPN no outbound access

KCS