Technical Tip: Web filter is not blocking websites...

ezhupa · 11-17-2025

Description This article describes how to fix issues with GRE passthrough traffic matching implicit deny for return traffic in 90G devices. Scope FortiGate. Solution After upgrading from the v7.2 branch to v7.4.8, there might be issues with GRE passt...

ezhupa · 10-27-2025

Description This article describes how to resolve issues with the Printer.Job.Language traffic is categorized as 'unknown' and blocked by APPCTRL. Scope FortiGate, FortiOS. Solution When having Application Control (APPCTRL) security profile enabled o...

ezhupa · 09-12-2025

Description This article describes issues with the Graceful Restart feature when used with BGP neighbor groups and neighbor-range commands. Scope FortiGate, FortiOS. Solution When multiple BGP neighbors must be configured, administrators may streamli...

ezhupa · 08-21-2025

Description This article describes how to automate bouncing IPsec interfaces using an automation stitch. Scope FortiGate. Solution In cases where it is needed to bounce an IPsec tunnel at a specific time during the day or week, automation stitches ca...

ezhupa · 07-24-2025

Description This article describes the traffic traversing via a non-preferred SD-WAN member due to incoming traffic. Scope FortiGate. Solution SD-WAN is a strategy to perform intelligent routing on FortiGate. When there are multiple WAN links availab...

ezhupa · 11-28-2025

Hello, Does the connection fail at any particular time?Do you also experience other issues at the same time, or only the download has performance issues?IF you do an iperf from the server towards the internet, do you experience any particular issues ...

ezhupa · 11-28-2025

Can you run a debug flow while trying to reproduce the issue or generating traffic towards the particular resource?This way we can check if the DNAT is happening as expected, or if there is any problem with the packet forwarding.It might be that the ...

ezhupa · 11-28-2025

Hello, For ALL of the possible outputs, there is no official document. Usually the admin guide or the study guide of the target exam will show a lot of debugs for working scenarios, that you can compare to a non working one you are trying to troubles...

ezhupa · 11-19-2025

Hello, Did you try blocking the Instagram Signature in the APPCTRL application override?If you block the signature itself, the APP should be blocked by the application control profile.Just make sure the traffic is matching the correct firewall policy...

ezhupa · 11-19-2025

I assume this is the same question that you asked in this other topic:https://community.fortinet.com/t5/Support-Forum/Traffic-arrives-at-Virtual-Server-but-seems-to-just-blackhole/m-p/419659#M279517As mentioned there, try disabling arp-reply for the ...

User Statistics

User Activity

Technical Tip: GRE passthrough traffic matching implicit deny for return traffic after upgrade to v7.4.8

Technical Tip: APP Control Randomly fails to identify Printer.Job.Language traffic

Technical Tip: Graceful restart feature not supported with BGP neighbor-group and neighbor-range commands

Technical Tip: Using automatic stitches to bounce IPsec interfaces

Technical Tip: SD-WAN bandwidth graph showing traffic on non-preferred member

Re: Synology NAS device with Fortigate DNAT issue

Re: fortigate virtual ip cant access from outside

Re: Diagnose commands guide

Re: Block Instagram app

Re: Traffic arrives at Virtual Server but seems to just blackhole

Technical Tip: Web filter is not blocking websites...

Technical Tip: SSL VPN on PPPoE issues after upgra...

Technical Tip: HA issues after upgrade to v7.2.9 f...

Technical Tip: Dial-up IPsec flapping issues after...

Troubleshooting Tip: VDSL issues on FortiGate 80F-...

Re: Redundant dial-up VPN FG to FG

Re: Ha sync config delay

Re: DNS Virtual Server load balancing to real serv...

Re: Direction incoming vs outgoing in logs (Fortig...

Re: Route vpn ipsec comes from port mgmt

KCS

User Statistics

User Activity

You are leaving our website