Fortinet Community

ChrisTan · 02-21-2023

Description This article describes the FortiGate HA upgrade procedure and the status during the upgrade. Scope FortiGate. Solution Below is how HA FortiGates negotiate during the upgrade and status in different stage: Stage 1: Upgrade start. Primary:...

ChrisTan · 01-24-2023

Description This article describes the behavior of the SD-WAN rules configured in manual mode while the performance SLA failure affect the rule. Scope FortiGate. Solution In manual mode, no health checks are used. As a result, decision-making closer ...

ChrisTan · 11-16-2022

Description This article describes that FortiGate can only allow a maximum of 32 secondary IP addresses per interface. Scope FortiGate. Solution Sometimes, FortiGate needs to apply multiple secondary IP addresses, especially in the cloud environment....

ChrisTan · 11-13-2022

Description This article describes that from the Client host, the gateway and the DHCP server would be the next available IP address when Dialup VPN is connected. Scope FortiGate. Solution When the client user1 tries to connect to Dialup VPN from For...

ChrisTan · 10-12-2022

Description This article describes that if DNS is enabled over TLS with default 'Fortinet_Factory', DNS Filter Rating Servers work fine. But if is selected with any other third party certificate, DNS Filter Rating Servers would be 'Unreachable'. Scop...

ChrisTan · 08-17-2022

https://docs.fortinet.com/document/fortigate/6.2.0/cookbook/724772/ssl-vpn-multi-realm This is the realm config example. The purpose of the realm here is to allow user login from different channels. You can apply with different portals that match dif...

ChrisTan · 08-17-2022

Does a realm + portal help in your case? If with no-domain PC, try https://wanip/byod byod is your new realm that also matches LDAP user but no registry key check. The new portal can help to achieve limited access and a different IP address.

Fortinet Community

User Statistics

User Activity

Technical Tip: FortiGate HA upgrade procedure and the status during the upgrade

Technical Tip: SD-WAN rule in manual mode avoid Performance SLA failed

Technical Tip: FortiGate can create max 32 secondary IP address per interface.

Technical Tip: Dialup VPN client gateway to be the next available IP address

Technical Tip: DNS Filter Rating Servers 'Unreachable' when DNS over TLS is configured with third party certificate

Re: SSL VPN portal profile based Host check

Re: SSL VPN portal profile based Host check

Technical Tip: DNS Filter Rating Servers 'Unreacha...