hello, we have 2 FG81 in HA (6.4.13) and a VPN to a SonicWall firewall
with another company in main mode. So we cant see the config on the
SonicWall side, but exchanging the parameters we got the VPN UP quite
fast. Now from our side we cant PING the ...
Hi, last time we used a FortiSwitch it was so easy, just linking with
Fortilink and I had access via ManagedFortiswitches. Now with the new HA
config with 2 FG100Fs I cant get the Fortiswitch ONLINE. We checked on
the KBs and did everything (Feature ...
Hi all, we are changing a HA platform and so we are checking for new
ideas and securing the configuration. One thing is that we have a VIP in
a DMZ and we have to get rid of it. Is it recommendable to create an
extra Interface just for the VIP to avo...
Hi, we have a new MPLS router in 2 offices and we can reach both sides,
BUT we have to configure ALL in the incomming Policy. Office A: MLPS
Router 10.2.2.1 - FG WAN - 10.2.2.2 - LAN 192.168.1.0/24Office B: MLPS
Router 10.2.3.1 - FG WAN - 10.2.3.2 - ...
Hello, we never had a problem with an update of a FG Cluster but I think
there is always a first time :( This time the FG81E Cluster just took so
long (on the web GUI validating Image for 30mins) that we restarted the
Slave unit after the process. Th...
Hi, I could solve the problem. Debugging we found Denied by forward
policy check. Than we checked the policy and there was the problem. For
testing we had all the LAN but also users and I thought these useres are
from the LDAP but they were not. Dele...
Hi, thanks for your input. I am not worried about the config since we
are right now with the new config of the HA cluster. Idea is using the
FortSwitch for the HA connections to the WAN Interfaces. You say that
connecting via CLI to the Switch and ex...
Hi, thanks for your input. The idea is to move these "unimportant
traffic" away from the DMZ. The config is like >10 years so maybe
sometime it made sense, but e.g there is just one VIP service to a VM
left and I would like to move it to a new interf...
Hi, first thanks! I got like 2 completely different ideas. Again, the
situation is that the slave YES managed to upgrade to 7.0.12 and the
Master tried to reboot the slave and did nothing and has the 6.4.11
right now. They are out of sync with differ...
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.