Troubleshooting Tip: Possible reasons for FortiCli...

sjoshi · 09-10-2025

Description This article describes how to configure and enforce Zero Trust Network Access (ZTNA) tagging rules in FortiSASE to ensure endpoint compliance. Specifically, it covers posture checks for FortiClient version, if antivirus is running, and op...

sjoshi · 09-09-2025

Description This article describes how to create, manage, and push FortiGate IPsec VPN configurations using FortiManager, enabling centralized provisioning and simplified deployment of VPN tunnels across multiple devices. Scope FortiGate, FortiManage...

sjoshi · 08-19-2025

Description This article describes the investigation and resolution of FortiGate High Availability (HA) failovers caused by intermittent link flapping on monitored interfaces and the use of non-Fortinet compatible SFP modules. It explains the symptom...

sjoshi · 08-19-2025

Description This article describes an issue where RADIUS configurations on newly added FortiGate devices are removed after pushing a policy package from FortiManager. Scope FortiGate, FortiManager. Solution FortiGate is added in FortiManager, andthe ...

sjoshi · 08-18-2025

Description This article describes how to troubleshoot and resolve an issue where user-based policy enforcement in FortiSASE fails to work as expected due to incorrect or missing RADIUS attribute mapping on FortiAuthenticator. It outlines the problem...

sjoshi · 09-05-2025

Hi @Sambhu , 1) For this you want to setup 2 SASE instance and each one will have 180 connection.from each branch 2 tnl will be setup towards each sase instanceYou can setup as primary and secondary for proper failover 2) You may refer below article ...

sjoshi · 08-13-2025

@mhrth based on the above logs shared I can see RTO when pinging with 1450, 1460 Can you change the tcp mss value in the firewall policy https://community.fortinet.com/t5/FortiGate/Technical-Tip-Setting-TCP-MSS-value/ta-p/194518

sjoshi · 08-13-2025

Hi @DavidMicheler , You must have click on fabric upgrade. Can you try upgrading by clicking on the upgrade as shown in below image and see if file upload option loads now.

sjoshi · 08-13-2025

Hi @mhrth , Please verify if any dos policy or traffic shaping i setup Is there latency when pinging towards any server in the cloud. Is there any latency towards the remote peer IP Further can try setting the tcp mss value to 1300 https://community....

sjoshi · 08-13-2025

ACL with “ip” — In ASA, permit ip means all protocols, not just TCP and UDP. On FortiGate, that’s equivalent to using the ALL service (which covers TCP, UDP, ICMP, GRE, etc.), not ALL_TCP and ALL_UDP alone. If you only choose those two, you’ll drop n...

User Statistics

User Activity

Technical Tip: Enforcing Endpoint Compliance in FortiSASE with ZTNA Tags for FortiClient, Antivirus, and OS Versions

Technical Tip: How to Push FortiGate VPN Configurations via FortiManager

Troubleshooting Tip: FortiGate HA failovers triggered by link flapping and SFP compatibility issues

Troubleshooting Tip: RADIUS Configuration Purged When Pushing Policy Package to FortiGate Devices via FortiManager

Troubleshooting Tip: FortiSASE Policy Enforcement Not Working for RADIUS User Groups with FortiAuthenticator

Re: FortiSASE- On Ramp Clarifications and support

Re: IPsec Tunnel Established but Experiencing Intermittent Ping Timeouts

Re: Unable to manual upgrade firmware with 7.2.11

Re: IPsec Tunnel Established but Experiencing Intermittent Ping Timeouts

Re: Fortigate NAT and ACL

Troubleshooting Tip: Possible reasons for FortiCli...

Technical Tip: Allow the communication between end...

Troubleshooting Tip: Resolving 'Invalid Number' Er...

Troubleshooting Tip: Unable to Subscribe to FortiS...

Troubleshooting Tip: Captive Portal error 'The str...

Re: Forti EMS vs FSSO

Re: firewall access log

Re: Failed to establish the VPN connection. (-5029...

Re: Active Directory Connector cannot connect but...

Re: IPsec won't split tunnel

FortiGate-VM on Azure

FortiGate-VM on AWS

KCS

Fortinet Training Institute

Engage Services

User Statistics

User Activity

You are leaving our website