Re: on-prem Fortigate can't reach EC2 VM via AWS F...

syao · 12-03-2025

Description This article describes how to manually update the Industrial / Operational Technology (OT) database in FortiGate through GUI. Scope FortiOS v7.2 or above Solution Download the Industrial Definition database from support.fortinet.com OS7.2...

syao · 10-16-2025

Description This article describes what happens when the syslog buffer of the FortiGate becomes full, the common causes of this issue, and how to troubleshoot it. Scope FortiOS v7.x or above. Solution Use 'diagnose test application syslogd 1' to view...

syao · 07-06-2025

Description This article describes that when the Shared WAN dropdown in the Site-to-Site IPsec VPN template is showing no entries, it usually indicates that there are no interfaces that have the role of 'WAN' Scope FortiGate v7.6. Solution When using...

syao · 06-09-2025

Description This article describes when the Create New button is greyed out in the Guest User Management Portal. Scope FortiGate. Solution In the Guest User Management Portal, the create new button is greyed out: Check the max account configured for ...

syao · 05-11-2025

Description This article describes how to troubleshoot when encountering 'ERR_EMPTY_RESPONSE' message after attempting to access the FortiGate outside interface for HTTPS management access via TCP port 443. Scope FortiGate v7.6.1 and above. Solution ...

syao · 05-19-2024

If it still does not work after creating a VIP and firewall policy, I suggest collecting the debug flow from the FortiGate while you reproduce the issue.https://docs.fortinet.com/document/fortigate/7.4.3/administration-guide/38044/using-the-debug-flo...

syao · 04-25-2024

I suggest running the sslvpn debug in the FortiGate while you connect to the VPN to check why the connection fails. diag debug resetdiag vpn ssl debug-filter src-addr4 diag deb app sslvpn -1diag deb console timestamp enablediag deb enableTo troublesh...

syao · 03-24-2024

Hello Hassan, I suggest running a debug flow and verify if the packets are allowed/blocked by the FortiGate: diag debug flow filter clear diag debug flow filter addr 172.30.1.138 anddiag debug flow filter proto 1 diag debug flow trace start 100diag ...

syao · 02-25-2024

I suggest running a debug flow and a packet sniffer to verify if the traffic is hitting your PBR rule, also make sure to turn off the offloading at the policy level to see them when you're debugging:https://community.fortinet.com/t5/FortiGate/Trouble...

syao · 01-21-2024

Hello Spike, It seems you're checking this log from the Application Control log view, in which the mac address would not appear. Did you try to check it from the Forward traffic logs? If you still don't see the MAC address from the Forward traffic lo...

User Statistics

User Activity

Technical Tip: How to manually update Industrial / Operational Technology (OT) database in FortiGate

Troubleshooting Tip: Syslog buffer cache getting full

Troubleshooting Tip: No entries visible in Shared WAN selection in Site to Site IPsec template

Troubleshooting Tip: Create new button is greyed out in Guest User Management Portal

Troubleshooting Tip: Getting 'ERR_EMPTY_RESPONSE' when accessing FortiGate WAN interface for HTTPS management access after configuring IPsec VPN

Re: FortiGate - setup ZKTeco Biometrics to VM server

Re: ForitiClient Status stop at 48%