Technical Tip: FortiGate Firmware Downgrade for Mi...

jiahoong112 · 10-27-2025

Description This article describes how to configure an IKEv2 Dialup IPsec VPN where IKE and user authentication are certificate-based. FortiGate and FortiClient are for an IPsec VPN server and client. FortiAuthenticator is used for certificate genera...

jiahoong112 · 09-22-2025

Description This article describes the case where EAP-TLS, WPA2-Enterprise, and 802.1X authentication fail when the RADIUS server is configured in the form of an FQDN. When FortiAuthenticator Cloud is used, only the FQDN of the FortiAuthenticator Clo...

jiahoong112 · 08-26-2025

Description This article describes the case when SWG with SSO authentication for FortiSASE is used, access to Microsoft 365 applications, such as Microsoft Teams, Outlook, Word, Excel, PowerPoint, etc, loses connectivity and ceases to be accessible. ...

jiahoong112 · 07-07-2025

Description This article describes how to configure split-dns for a split-tunnel IPsec dialup vpn with FortiClient on FortiGate to resolve an internal domain. Scope FortiGate v7.2, v7.4, v7.6. Solution Topology: client –internet-- FGT-kenobi –ipsec--...

jiahoong112 · 06-27-2025

Description This article describes what to do when the TS Agent FSSO users are unable to resolve DNS. Scope FortiGate v7.2, v7.4, v7.6. TS Agent. Solution Here, the TS Agent user information is present in the (# diag firewall auth list) output, TS Ag...

jiahoong112 · 10-02-2025

Yes, FortiConverter is a paid service.

jiahoong112 · 10-02-2025

yes this is possible. you will have to create a virtual-server as such: https://community.fortinet.com/t5/FortiGate/Technical-Tip-Configure-a-virtual-server/ta-p/194457 https://docs.fortinet.com/document/fortigate/6.2.0/cookbook/713497/virtual-server

jiahoong112 · 10-02-2025

You can try getting the sdwan performance sla information from snmp: https://docs.fortinet.com/document/fortigate/7.6.4/administration-guide/971573/using-snmp-to-monitor-health-check

jiahoong112 · 10-01-2025

FortiConverter Service can be used to convert the configuration of your Sophos firewall to a FortiGate compatible configuration. You will have to get in touch with the Fortinet Sales Team and/or Fortinet Professional Services for this to kickstart th...

jiahoong112 · 09-21-2025

There is. In your firmware downloads on support.fortinet.com, browse to /FortiGate/v7.00/7.4/7.4.8 and search for FGT_50G-v7.4.8.M-build2795-FORTINET.out FGT_50G_5G-v7.4.8.M-build2795-FORTINET.out You'll see 2 types, for the regular 50G and for 50G-5...

User Statistics

User Activity

Technical Guide: Configure and Troubleshoot 2FA Certificate Authentication for IKEv2 Dialup IPsec VPN

Troubleshooting Tip: EAP-TLS, WPA2-Enterprise, 802.1X authentication is failing with FQDN RADIUS server

Technical Tip: FortiSASE SWG SSO users unable to connect/access Microsoft 365 applications Microsoft Teams, Outlook

Technical Tip: Configuring split-dns on FortiGate for split-tunnel IPsec Dialup VPN

Technical Tip: TS Agent FSSO users are not able to resolve DNS

Re: Migration from Sophos to FortiGate

Re: Route traffic based on FQDN targeted page

Re: Query SDWAN performance SLA

Re: Migration from Sophos to FortiGate

Re: Fortigate 50G firmware stuck at v7.0.17 build7598 (Mature) - no 50G version on Support webiste

Technical Tip: FortiGate Firmware Downgrade for Mi...

Technical Tip: Using Microsoft Teams with DOS Poli...

Technical Tip: SD-WAN Best Quality (SLA) Customize...

Technical Tip: How to install FortiClient on Ubunt...

Technical Tip: Check the SSH encryption algorithm ...

Re: Query SDWAN performance SLA

Re: Fortigate 50G firmware stuck at v7.0.17 build7...

Re: Tenable Vulnerability report on fortigate devi...

Re: How to Configure Redundant IPsec Tunnels over ...

Re: FortiClient Remote Access VPN – Automatic Fail...

KCS

User Statistics

User Activity

You are leaving our website