Hi all, Device: HA-pair 61F v7.2.10 Per subject, IKEv2 debug log was
stuck in phase2 INFORMATIONAL state, the traffic cannot pass through
even phase1 and 2 is up. For example, the sniffer log can show the icmp
echo request and echo reply through the ...
Hi team, I am currently testing Traffic Shaping Profile in v7.2.8
FortiGate 601F with NP7 (default-qos-type: policing, as shaping is not
recommended).NP7 traffic shaping | FortiGate / FortiOS 7.2.8 | Fortinet
Document Library I find the netlink inter...
Technical Tip: Fragment IP packet before IPsec enc... - Fortinet
Community It seems the NP6 does not support pre-encapsulation and we
need to turn off the NP by disable the auto-asic-offload in firewall
policy. May I know if NP7 support pre-encapsula...
Recently the FortiGate received attack from 114.34.160.41 and IPS
successfully blocked the attack, but then caused a false alarm on SIEM.
As the FortiGate sent a “Allowed – session reset” log message to SIEM,
the SIEM triggered a high-alert message, ...
Hi Boris, Thanks for your help and reply! I tried the auto-asic-offload
disable in policy, and tried auto-asic-offload disable and
np-acceleration disable in VPN tunnel, but still failed for VPN Tunnel.
Hi Teams, I just find if I set the profile in p...
