Description This article describes the behavior and the usage of the
link-down-failover, fast-external-failover, and interface options that
exist for BGP on the FortiGate. These options affect BGP peering
behavior in different but highly-complementar...
Description This article explains how to block access to IPFS gateways
through the FortiGate. As a primer, IPFS (InterPlanetary File System) is
a distributed filesystem that allows users to host/receive content in a
peer-to-peer manner, similar to Bi...
Description This article describes the basic requirements that must be
met when configuring LACP between HA FortiGates and Nexus Switches
configured for vPC. Scope FortiGate (all models/versions); Cisco Nexus
switches. Solution As a primer, LACP link...
Description This article discusses a previously undocumented limitation
about how many interfaces can be set when configuring Multicast Routing
on the FortiGate (i.e. via PIM sparse-mode). The article also discusses
the functional effects of this lim...
Description This article describes the general requirements for
configuring NAT46 and NAT64 when using NGFW Policy-mode (which also
includes Central-SNAT) on FortiOS 7.0.1 and later. In FortiOS 7.0.1, the
NAT46/NAT64 features underwent a major redesi...
Hi Faiza_Emam_Delhi, can you clarify where (FortiGate, FortiSwitch
directly, FortiManager, etc.) and on what firmware you were able to
perform these steps? I checked on FortiOS 6.4, 7.0, 7.2, and 7.4, and
none of them have the capability that you are...
I recommend checking out these Community KB articles for SSL-VPN and
IPsec:https://community.fortinet.com/t5/FortiGate/Technical-Tip-Enabling-split-tunnel-feature-for-SSL-VPN/ta-p/198108https://community.fortinet.com/t5/FortiGate/Technical-Tip-Enable...
Unless I'm missing something, it looks to me like Source NAT isn't
turned on for Policy 15, the SSL-VPN to Internet policy.You're using a
full-tunnel SSL-VPN (set split-tunneling disable), so all traffic is
shuttled over the VPN in this case, but you...
