Description This article describes why it is necessary to disable ASIC
on firewall policy. Scope All FortiGate which has ASIC. Solution Before
attempting to capture traffic on ForitGate ensure that ASIC offloading
is disabled on the respective firewa...
Description This article provides the information that for the read-only
users, there are limitations to enable the number of bandwidth
monitoring interfaces. In the read-only users, there is a limit of 2.
Scope FortiGate. Solution Create the read-on...
Description This article describes the possible reason why it is not
possible to log in to the device with Forti Hardtoken because of the
time/NTP issue. Scope FortiGate. Solution The Authentication failure
error has been visible while logging into t...
Description This article describes how to enable the audit log via CLI.
Scope FortiGate 7.0.x. Solution Below are the steps to enable the audit
log on the CLI: config system global set cli-audit-log enable end To
test if the audit logs are working, t...
Description This article describes how to enable STUN protocol in a
policy. Scope All versions of FortiGate.Fortigate must be in
Profile-Based Mode (with or without Central SNAT enabled). Solution By
default, the STUN option is hidden in policies.To ...
++ASIC offloading is disabled on respective firewall policy.This is
because sessions offloaded by Network Processors (NP6, NP6Lite) will not
be captured by sniffer. Note: this make cause the high cpu, to prevent
cpu overutilization, create a more spe...
You can try to delete the logs and then upgrade it,execute log
delete-allIf the above doesnot work, then flash format the device and
upload 5.6.13 firmware and then the configuration and then upgrade it.
If still not working, then you can open a tick...
You may also check the below
links:https://community.fortinet.com/t5/FortiGate/Technical-Tip-FortiGuard-is-not-reachable-via-Anycast-default/ta-p/190041https://community.fortinet.com/t5/FortiGate/Technical-Tip-FortiGuard-Services-are-Unreachable/ta-p...