Technical Tip: FortiOS packet sniffer tip

nnair · 12-26-2024

Description This article explains how to check the changes done on the GUI and can be seen on the CLI, this can be helpful during the configuration changes as well as for the audit. Scope FortiGate. Solution Run the below command on the FortiGate CLI...

nnair · 08-30-2024

Description This article describes how to change the DNS server IP address. Scope All FortiGate. Solution By default, the FortiGate will be added with the default FortiGuard server IP address on the DNS settings. FortiGuard DNS servers are used by Fo...

nnair · 08-30-2024

Description This article describes how to block specific ports. Scope FortiGate. Solution In this scenario, the configuration has been setup to block the TCP port 4433 for outgoing traffic. A new service object is created followed by the outbound fir...

nnair · 08-20-2024

Description This article describes the issue when it is impossible to see the service field. Scope FortiGate 7.6.0. Solution When creating the new policy for the first time, the service field will not be displayed: It is necessary to select the desti...

nnair · 08-09-2024

Description This article describes how to allow ISDB for Gmail. Scope FortiGate. Solution Open the firewall policy, then select a destination. Select Internet Services -> Search for 'Gmail' and then select the Gmail ISDB as shown below: In the same m...

nnair · 07-17-2024

++ASIC offloading is disabled on respective firewall policy.This is because sessions offloaded by Network Processors (NP6, NP6Lite) will not be captured by sniffer. Note: this make cause the high cpu, to prevent cpu overutilization, create a more spe...

nnair · 10-10-2023

You can try to delete the logs and then upgrade it,execute log delete-allIf the above doesnot work, then flash format the device and upload 5.6.13 firmware and then the configuration and then upgrade it. If still not working, then you can open a tick...

nnair · 10-10-2023

You may check the below link:https://www.fortiguard.com/encyclopedia/ips/100663396

nnair · 10-10-2023

You may also check the below links:https://community.fortinet.com/t5/FortiGate/Technical-Tip-FortiGuard-is-not-reachable-via-Anycast-default/ta-p/190041https://community.fortinet.com/t5/FortiGate/Technical-Tip-FortiGuard-Services-are-Unreachable/ta-p...

nnair · 08-29-2023

Dear Customer,May I know on which device you are trying to remove the software inventory ?

User Statistics

User Activity

Technical Tip: How to check the changes done in GUI via the CLI

Technical Tip: How to change the DNS server IP address

Technical Tip: How to block specific ports

Technical tip: Not able to see service field when creating a new policy

Technical Tip: Allow ISDB for Gmail

Re: Asic-Offload

Re: Upgrades FW Fortigate 30D and 30E from 5.6.13 to 6.x.x

Re: Get count of half open tcp sessions

Re: Unable to connect to fortiguard servers

Re: Remove hosts and software from Inventory

Technical Tip: FortiOS packet sniffer tip

Technical Tip: How to enable STUN protocol in poli...

Technical Tip: How to change the DNS server IP add...

Technical tip: Not able to see service field when ...

Technical Tip: How to block specific ports

KCS

User Statistics

User Activity

You are leaving our website