Description This article describes how to access an external web proxy
through a ZTNA TCP forwarding access proxy with the FortiClient EMS tag.
Scope Fortigate, FortiProxy, FortiClient Solution The proxy server can
be accessible via a FortiClient tha...
Description This article describes how traffic is handled in a
proxy-based firewall with a UTM profile for FTP over TLS . Scope
FortiGate. Solution When the FortiGate firewall policy is configured in
proxy-based mode IPS/Appctrl/SSL inspection is ena...
Description This article explains how traffic flow works and when the
firewall policy is configured in proxy mode with an application profile
. Scope Any supported version of FortiGate. Solution When the FortiGate
firewall policy is configured in pro...
Description This article describes how to enable FortiGate probe traffic
on the Azure load balancer. Scope FortiGate. Solution In the Azure load
balancer, if the FortiGate-VM probe is enabled, the Azure load balancer
sends out a probe to a TCP/UDP po...
Description This article explains the different sizes of Internet
Service Databases (ISDBs) available to use with FortiOS. Scope FortiOS.
Solution In the new FortiOS version, ISDBs are categorized in three
sizes based on hardware and data file size. ...
Hello, Its depend on VIOP phone what dscp it marking and queuing
according to that you can configure on fortigate .please check DSCP
value which might help you to mark them on fortigate .
https://community.fortinet.com/t5/FortiGate/Technical-Tip-Diff...
IS the resources access via https proxy ? if its simple sslvpn then you
can enable DTLS on FCT and SSL VPN setting on FortiGate also check the
MTU size in policy
Please check DNS and fortiguard connectivity . If DNS not resolving then
it could be an issue also if FGT is not connected with Fortiguard .
https://community.fortinet.com/t5/FortiGate/Troubleshooting-Tip-FortiGuard-Web-Filtering-problems/ta-p/196965...
You can use the other profile and other way is you can use virtual
server option which will give additional certificate inspection layer to
add more security posture
https://community.fortinet.com/t5/FortiGate/Technical-Tip-Recommended-configuration-...
Hello, Please check the firewall policy if it's not allowed then
firewall block the traffic . You can sniff and debug also to see if
traffic from the source hits to firewall.