Technical Tip: Understanding IPsec (iked) debug lo...

tthrilok · 06-04-2025

Description This article describes how 'retry' and 'timeout' values impact the DNS failover when using 'failover' as the server-select-method. Scope FortiGate. Solution With the default configuration, the failover happens to the secondary DNS server ...

tthrilok · 02-07-2025

Description This article describes how to delete an external FortiGuard category threat feed. Scope FortiOS. Solution In order to delete an External FortiGuard category threat feed: By default, if the External FortiGuard Category Threat Feed is refer...

tthrilok · 11-06-2023

Description This article explains the behavior of FSSO collector agent failover. Scope FortiGate FSSO. Solution When the Primary and Secondary FSSO Collector Agents are configured in the FortiGate firewall, the firewall connects with the primary Coll...

tthrilok · 08-21-2023

Description This article explains the basic troubleshooting steps when 'Fortinet Single Sign On (FSSO) for SSL-VPN users' using syslog is not working. Scope FortiGate, FSSO. Solution Once the configuration is done, there are chances that the user inf...

tthrilok · 08-20-2023

Description This article describes how to use a custom certificate for FortiGate block pages. Scope FortiGate. Solution It is often possible to see a firewall giving a block page. However, the user machine does not show it, and it works after install...

tthrilok · 01-10-2024

Hi Noelia, I understand you want to know about the Forticloud Key Registration, however could you please elaborate what is it exactly you are looking for? Is it you are unable to find the Forticloud Key for your devices? << If so, it can be shared by...

tthrilok · 01-09-2024

Hi Hakim, After going through the query, we understand you are having the issue IPsec Site-Site. However could you please elaborate "But, I have added a static route on the 40F to route the traffic tag with the subnet where is the 40C behind a router...

tthrilok · 08-02-2023

Hi Yeowkm99,Could you cross check if there is a IP duplicacy, you may verify the ARP entry on the user/lan machine for the firewall ip, are you seeing the firewall MAC address?You can get the mac address of the firewall using below command:di hardwar...

tthrilok · 07-19-2023

Hi Idanieri, Thank you for the query! May I request if you have taken sslvpnd and samld logs from the firewall when trying to connect to VPN from mac machines? You may please share the below logs when the issue is happening? di de reset di de app sam...

tthrilok · 07-19-2023

Hi Ktro, I understand you want to know what data is transferred over the SSLVPN tunnel by the users. + You may need to track the destinations by enabling log all sessions in the policy + If in case you want to see the files or applications used by th...

User Statistics

User Activity

Technical Tip: FortiGate DNS failover behavior when using 'failover' as server-select-method

Technical Tip: How to delete an external FortiGuard category threat feed

Technical Tip: FSSO Collector Agent failover behavior

Troubleshooting Tip: Troubleshoot FSSO for SSL-VPN users (FSSO CA is acting as syslog server)

How to use custom certificate for FortiGate Block pages

Re: Forticloud Key Registration Requirement

Re: VPN Site to Site FortiGate 40F(HQ) and 40C (Branch behind NAT) via Internet

Re: FG100F LAN interface traffic

Re: Intermittent connection issue with FortiClient on Mac - Azure AD SSO Integration - Error -1001

Re: Tunnel VPN connection - what is being transferred?

Technical Tip: Understanding IPsec (iked) debug lo...

Troubleshooting Tip: RADIUS over TLS in FortiGate

Technical Tip: Using NTLM as a backup authenticati...

Technical Tip: How to delete an external FortiGuar...

Re: Zero bytes in traffic logs

Re: Fortigate cannot ping outside

Re: Does NP7 support pre-encapsulation for IPsec V...

Re: Guidance needed on Fortigate Web Filtering and...

KCS

User Statistics

User Activity

You are leaving our website