Fortinet Community

ezhupa · 04-21-2023

Description This article describes an issue that occurs when attempting to send an initial FortiGate Serial Number to the EMS Cloud: Issue in sending initial FortiGate Serial Number: EMS server connection failed because the server is not compatible. ...

ezhupa · 03-28-2023

Description This article describes how to perform the initial setup of a transparent proxy with an SD-WAN. Scope Any supported versions of FortiGate and FortiOS. Solution First, configure the SD-WAN. See the documentation for more information. In thi...

ezhupa · 02-27-2023

Description This article lists useful commands for initial troubleshooting steps with issues running FortiGate with Virtual Servers. Scope FortiGate, FortiOS. Solution Verification and debug Check the status of the real servers: # diagnose firewall v...

ezhupa · 01-11-2023

Description This article describes the case when FortiGate GUI is stuck with the error License is being validated by FortiGuard. Scope FortiGate. Solution Run the below commands to troubleshoot FortiGate - FortiGuard communication: # dia de app updat...

ezhupa · 11-17-2022

Description This article describes how to troubleshoot an issue where PPPoE does not form on WAN1/2 when FGT in a HA Cluster. Scope FortiGate. Solution Check group-id and change the value to a random number Sometimes, issues on only one WAN interface...

ezhupa · 06-02-2023

Check the below KB: https://community.fortinet.com/t5/FortiClient/Technical-Tip-SSL-VPN-MAC-host-check-does-not-work/ta-p/194482 "Due to security reason,Android & IOS will not allow Apps to be able to trace units and their users anymore.Hence Forticl...

ezhupa · 06-01-2023

Hello Anatoli, From FW perspective the link becomes idle and there is no response from other side. You can also try to set up a sniffer for esp packets on both FW1 and FW2 and see if FW1 is sending packets, if FW2 is receiving these packets and sendi...

ezhupa · 06-01-2023

Hi Adrian, You can also configure local-in policies following the below documentation. You just need to adjust it to your own case:https://docs.fortinet.com/document/fortigate/7.4.0/administration-guide/363127/local-in-policy

ezhupa · 02-09-2023

Central NAT should already be enabled by default in case your device is in Policy Mode. Should be visible under Policy & OBjects > Central NAT in the GUI or by running the below command in the CLI: show full system settings | grep "central-nat"

ezhupa · 02-09-2023

You can also use the commands in the below KB to troubleshoot speed or bandwidth issues: https://community.fortinet.com/t5/FortiGate/Troubleshooting-Tip-How-to-troubleshoot-speed-or-bandwidth/ta-p/216705

Fortinet Community

User Statistics

User Activity

Troubleshooting Tip: 'Issue sending initial FortiGate Serial Number' error when connecting to EMS Cloud

Technical Tip: Set up a transparent proxy within an SD-WAN

Troubleshooting Tip: Initial troubleshooting commands for Virtual Servers

Technical Tip: FortiGate stucks in Validating License/Cert error 9, certificate is not yet valid

Troubleshooting Tip: PPPoE fails to form on WAN1/2 when FGT in HA Cluster

Re: SSL VPN MAC host check doesn't work on IOS device

Re: Ipesec tunnel no traffic oposite direction

Re: Geo Blocking with SD-Wan enable

Re: VIP port forwarding policy problem

Re: IPSEC VPN Very SLOW

Technical Tip: Set up a transparent proxy within a...

Troubleshooting Tip: Initial troubleshooting comma...

Technical Tip: FortiGate stucks in Validating Lice...

Troubleshooting Tip: PPPoE fails to form on WAN1/2...

Re: how are these interfaces different?

Re: Geo Blocking with SD-Wan enable

Re: Ipsec rekey debug

KCS