Hello, We manage several fortigates and this is the first i am clueless
about this issue. I am UNABLE to reach the whole DMZ from the Internal
LAN. Wan -> DMZ Works DMZ -> Internal Works (it was a test) LAN -> DMZ
doesn't work. Policy was a plain one...
Hello, today I have a lots of customers complaining about not able to
visit some web sites because of Fortigates blocking them because of a
virus.It seems a false positive to me: web sites are different and in
different countries. 3 different models ...
Hello, I have a FGT-200 cluster managed by FortiManager.I scheduled a
firmware upgrade on the cluster and it went well. No error or
whatsoever. Firewalls and FMG are working good and I have noticed
nothing odd until, this morning, I saw an Out-of-Syn...
Hello, I had to replace a very olf FGT 200A with a new FGT 200D.FGT 200A
has a 4.00 firmware with an IPSec VPNI applied the same IPSec
configurations on the new FGT200D.The only thing im unable to export is
the preshared key. a copy&paste from the ol...
Hello, My FGTs (two different models with latest firmware) are logging
with a strange behaviour:All traffic from every public IP toward
different servers in DMZ are logging with the same MAC address. I don't
know if it is some ISP device before the f...
Hello, Fortinet support solved the problem that is NOT a bug :)
Practically there was a sd-wan rule (Lan_Internal to WAN) preventing the
routing FROM internal to go anywhere else.I don't know which colleague
put that rule but I am enraged as a Dragon...
I am still waiting for an answer and I expect a lot of tests before
realizing it could be a bug. Anyway I tried to map an Internal IP to a
DMZ IP just to see if it works: but it doesn't :(
Yes, I know I just wanted to try this 5.6 "for fun" :)I can downgrade to
5.4.5, it's just I will have to redo interfaces configurations but I
think this is the only option I have because I have no clue at all. This
thing I want to accomplish is the s...
It is strange :) config system interface edit "internal1" set vdom
"root" set ip 192.168.1.1 255.255.255.0 set allowaccess ping https ssh
set type physical set role lan set snmp-index 13 next endconfig system
interface edit "dmz" set vdom "root" set ...
Yes i can ping from Fortigate CLI using a LAN address.I practically made
every test possible.I manage over 40 Fortigates and this is first time I
am dealing with such a thing, I even opened a ticket :( My concern might
be the latest firmware 5.6. I j...
