Fortinet Community

Babitha_M · 09-14-2023

Description This article describes the case when it is impossible to log into the FortiGate via SSH, or GUI with the Local firewall user. The user belongs to a remote server (Radius, Tacacs) and can access it. Scope FortiGate. Solution When it comes ...

Babitha_M · 09-13-2023

Description This article describes that by default, FortiGate does not log the SLA health check and how to configure the SLA logging. Scope FortiGate. Solution Here is the config example: set sla-fail-log-period set sla-pass-log-period Enter an in...

Babitha_M · 09-05-2023

Description This article describes how to use source IP for the local out traffic in a static route. Scope 7.4.0 and above. Solution This is a new feature introduced in the FortiOS version of 7.4.0. It is possible to add the preferred source IP in th...

Babitha_M · 08-03-2023

Description This article describes what will happen if the ip pool and DHCP IP ranges conflict. Scope FortiGate. Solution If an IP pool is defined but not used, it can still cause issues with DHCP if the IP pool's range overlaps with the DHCP range. ...

Babitha_M · 05-28-2023

Description This article provides some useful filters that can used in the sniffer packet. Scope FortiGate. Solution The following command is used to trace the packet via CLI: dia sniffer packet 'host x.x.x.x ' <----- This interface can be set to ...

Babitha_M · 09-05-2023

Hi Abdal, You may use the option Keep Alive in the phase2 configuration. The option is to keep the tunnel active when no data is being processed. Please refer the below link:https://community.fortinet.com/t5/FortiGate/Technical-Tip-Using-the-IPSec-au...

Babitha_M · 08-11-2023

Hi Mehul, Please note that the ISDB object will not support split tunneling. It is necessary to manually build an address group and include all of the Teams addresses. Regards,Babitha M

Babitha_M · 08-03-2023

Hi Chris, Yes, that's correct. If an IP pool is defined but not used, it can still cause issues with DHCP if the IP pool's range overlaps with the DHCP range. This situation can lead to conflicts and unpredictable behavior in the network. When a DHCP...

Re: Guest User as VPN User · 07-18-2023

Hi fabs, Only the user who created with Administrative profile as super admin will be do changes on the configuration part.User with read only access will not be able to change anything on the user profile. Also, need a confirmation that you are look...

Re: Guest User as VPN User · 07-18-2023

Hi fabs, Yes, it is possible to use the guest user for vpn using fortitoken.ssl vpn portal for guest user: Regards,Babitha M

Fortinet Community

User Statistics

User Activity

Technical Tip: Unable to login to the GUI/SSH with Local firewall user

Technical Tip: How to enable log for SLA in SD-WAN

Technical Tip: Configuring source IP for local-out traffic

Technical Tip: Understanding the IP pool configuration and DHCP range IP

Technical Tip: Useful filters for sniffer packet capture

Re: Maintaining IPSEC Tunnel up when No Traffic is Generated

Re: Split Tunnel

Re: DHCP fails if IP Pool overlaps

Re: Guest User as VPN User

Re: Guest User as VPN User

Re: Maintaining IPSEC Tunnel up when No Traffic is...

Re: Guest User as VPN User

Technical Tip: Useful filters for sniffer packet c...

Re: Forward traffic based on url

KCS