Description This article provides an option to use a loopback IP for the
DHCP-relay source IP. Scope FortiGate. Solution FortiGate allows an
external DHCP server to assign IP addresses to the IPsec VPN clients.
This is typically found in enterprises ...
Description This article describes how to use and configure the ping
server in an HA virtual cluster environment Scope FortiGate. Solution
The HA ping server needs to enable a link monitor or SD-WAN health
check. config system link-monitor edit "L_M_...
Description This article describes the feature of ADVPN that injects the
tunnel IP to the spoke site for BGP peering. Scope FortiSASE. Solution
The below is a standard ADVPN config: config vpn ipsec phase1-interface
edit VPN1 set type dynamic set int...
Description This article describes the SSL error issue with deep
inspection on iOS in FortiSASE. Scope IPhone iOS, Solution The FortiSASE
'Fortinet_CA_SSL' will be imported once the iOS is registered in the
FortiSASE. But even after the SSL certifica...
Description This article describes how to fix the expired client keys
for Azure FortiGate HA. Scope FortiGate in Azure. Solution The Azure
application client key may expire. If so, the FortiGate HA will not
work, and FortiGate will be unable to commu...
https://docs.fortinet.com/document/fortigate/6.2.0/cookbook/724772/ssl-vpn-multi-realm
This is the realm config example. The purpose of the realm here is to
allow user login from different channels. You can apply with different
portals that match dif...
Does a realm + portal help in your case? If with no-domain PC, try
https://wanip/byod byod is your new realm that also matches LDAP user
but no registry key check. The new portal can help to achieve limited
access and a different IP address.
