Fortinet Community

scheuri · 05-11-2023

Hi all I already opened a support ticket for this - however, I'd like to have some input (maybe others had the same issue?). Situation:We deploy fortigate (60f and 100f), currently with 6.4.9, as clusters.The (single) cluster link is physical and dir...

scheuri · 03-08-2023

Hello all I have an odd issue with a Fortigate VM-64 (6.4.10) in Azure.The virtual machine and azure configuration is not maintained by me so I have no real detailed information.We tested the restore function of Azure and after restorting the fortiga...

scheuri · 02-21-2023

Hello everyone I have two virtual Fortigates (one in Azure, one on ESXi). Both of them have local disks and both are configured to send the logs to a Fortianalyzer. Both Fortigates are on 6.4.9. When enabling disk logging (config log disk setting - s...

scheuri · 01-24-2023

Dear all We have a Fortigate VM in Azure (6.4.10) which is supposed to have about six (6) IPSec tunnels to ZScaler.The reason for that many tunnels: Each tunnel is supposed to only offer 400 Mbit/s (we tested 1 Gbit/s, but its still not enough). This...

scheuri · 01-19-2023

Hello all Our clients have a phone software installed which needs internet connection.There are several firewall policies in place to allow said phone software to connect to several internet places. The producer of the phone software needs us to allo...

scheuri · 01-24-2023

Good day Adrian Thank you SO much for your reply.I didn't add the underlay (internet connection) as SDWAN zone. I first tried to just add the IPsec tunnels to a SD-WAN Zone and gave them (in the SD-WAN-Zone as members) a fake/dummy IP address. And th...

scheuri · 01-24-2023

Thank you for the information - that should indeed work. Much appreciated.

scheuri · 01-22-2023

Thank you very much for the information about the ISDB, much appreciated.As for the client - we will investigate some more. The web based application uses several wildcard domains and those are working (meaning: they are getting populated with IP add...

scheuri · 01-22-2023

Hello gfleming The clients (laptops - no phones per se) use an internal DNS server.Those internal DNS servers are reachable over a VPN that is established on the branch fortigate. The reason why I think some of the DNS requests get "hidden" of sorts ...

scheuri · 01-22-2023

Hello abarushka My apologies:I was refereing to the "out of band Management" IP addresses which are (partially) configured in "system ha". Those are not mentioned in the documentation when you are having a single box (those are only mentioned in the ...

Fortinet Community

User Statistics

User Activity

HA cluster "split brain" when downstream cisco stack reloads?

Config missing in Azure VM Fortigate after Restore

Logging on the disk AND to a remote syslog at the same time, possible?

IPSec tunnels from Azure Fortigate VM to ZScaler and SD-WAN

Wildcard FQDN not working because STUN tunnels DNS request?

Re: IPSec tunnels from Azure Fortigate VM to ZScaler and SD-WAN

Re: Splitting up a Cluster in Azure (VMs) and preserve HA-mgmt-Port settings?

Re: Wildcard FQDN not working because STUN tunnels DNS request?

Re: Wildcard FQDN not working because STUN tunnels DNS request?

Re: Splitting up a Cluster in Azure (VMs) and preserve HA-mgmt-Port settings?

Logging on the disk AND to a remote syslog at the ...

Re: IPSec tunnels from Azure Fortigate VM to ZScal...

Re: Re-Use of VM license when deploying VM in Azur...

Re: External BotNet Lists in AMP Profil or IPS Sen...

Re: Same MAC for aggregated interface on two diffe...