Description This article describes how to enable SAML auth with G Suite.
Scope FortiSASE (SP), G Suite (IDP), FortiSASE v23.4.17, SSO. Solution
Login to FortiSASE account https://portal.prod.fortisase.com/ and
navigate to Configuration -> Authenticat...
Description This article describes how to restore the firmware via URL.
Scope FortiGate v7.0 and above. Solution Pre-request: Any webserver that
has the firmware image available is necessary to be uploaded. Once the
IP can be reached by the webserver...
Description This article describes how to stop the captive portal
triggering in another tab on a browser and how to prevent the
authentication page being insecure. Scope FortiOS v7.0 and above.
Solution Pre-request: DNS traffic should be exempted on ...
Description This article explains how SDWAN Performance SLA functions
with multiple servers. Scope FortiGate. Solution This article will use
the example of two server IPs configured under the 'SLA_Internet' health
check: # config health-check edit "S...
Description This article explains how to enable logging and how to view
cached HTTP/S traffic. Scope FortiProxy. Solution 1) Enable http-view
under global settings: # config system global set http-view enable end
2) To list logs, run the following: #...
Hi @yeowkm99 Based on the update, I understand that from Firewall Lan IP
as a source your not able to ping other network. Also when you mentioned
that from Lan to Lan reachability is fine, Was this validated from both
direction? Is Nat enabled on the...
@Akmostafa , Can you confirm if your have the FGT added to FAZ(which is
having IOC license). Also check if the blocked user source is getting
listed for the below command. diag user quarantine list or diag user
banned-ip list
Hi @joshow , I missed the part of cert error mentioned. As checked the
CN/SNI in SSL certificate we not get matched even with deep-inspection.
Suggesting to use Web-filter along with DNS-filter. Regards, Patterson
Hi @joshow , I understand that your looking for a replacement message if
the DNS filter is blocking the access based on your configuration. Since
this is a DNS query initiated, FGT can't responds back with http
responds. Instead we have the option to...
Hi Vassilis, I think we got the issue !!! Please change the Action
execution from Parallel to Sequential. The issue was occurring for me
also, when set to parallel... Regards, Patterson