Description This article describes the case when SWG with SSO
authentication for FortiSASE is used, access to Microsoft 365
applications, such as Microsoft Teams, Outlook, Word, Excel, PowerPoint,
etc, loses connectivity and ceases to be accessible. ...
Description This article describes how to configure split-dns for a
split-tunnel IPsec dialup vpn with FortiClient on FortiGate to resolve
an internal domain. Scope FortiGate v7.2, v7.4, v7.6. Solution Topology:
client –internet-- FGT-kenobi –ipsec--...
Description This article describes what to do when the TS Agent FSSO
users are unable to resolve DNS. Scope FortiGate v7.2, v7.4, v7.6. TS
Agent. Solution Here, the TS Agent user information is present in the (#
diag firewall auth list) output, TS Ag...
Description This article describes what to do when client devices behind
a CGNAT network fail to connect to FortiSASE VPN. Scope FortiSASE.
Solution Follow the steps in the following KB article to perform a
capture using Fortinet Support Tool on Fort...
Description This article describes what is required to access internal
HTTP/HTTPS resources with 'apptype web'. Agentless ZTNA Access Proxy
portal is a new feature as of 7.6.1: ZTNA agentless web-based
application access 7.6.1 To initiate the configu...
I'd suggest going for Zones in your case:
https://docs.fortinet.com/document/fortigate/7.6.4/administration-guide/116821/zone
If you go with Multiple Interface Policies, it can get messy very
quickly. Please keep in mind that to add an ipsec tunnel t...
As you require all 4 wan link of yours to be active at the same time,
they should all have the same Admin Distance but different Priority
value. The smaller the Priority value, the higher the routing Priority.
As you are using SDWAN, best to put all ...
