Technical Tip: Fragment IP packet before IPsec enc... - Fortinet
Community It seems the NP6 does not support pre-encapsulation and we
need to turn off the NP by disable the auto-asic-offload in firewall
policy. May I know if NP7 support pre-encapsula...
Recently the FortiGate received attack from 114.34.160.41 and IPS
successfully blocked the attack, but then caused a false alarm on SIEM.
As the FortiGate sent a “Allowed – session reset” log message to SIEM,
the SIEM triggered a high-alert message, ...
Hi amouawad, Thanks for your reply! The policy is using default IPS
profile and should be the reason why action shows "Allowed" on traffic
log. But why some CVE set Action "Pass" as default setting?