Technical Tip: Web filter is not blocking websites...

ezhupa · 03-11-2025

Description This article describes issues with FortiSwitch health status showing as 'Unknown' in FortiGate GUI. Scope FortiGate, FortiSwitch. Solution When managing FortiSwitches from FortiGate in the Managed Switches section under WiFi & Switch Cont...

ezhupa · 02-25-2025

Description This article explains issues when configuring a specific transport mode in the IPSEC tunnel through GUI and it changes to 'auto' in the background. Scope FortiGate. Solution In the v7.6 branch, it is now possible to configure the transpor...

ezhupa · 01-29-2025

Description This article explains that HA failover does not go as expected when one of the monitoring interfaces goes down. Scope FortiGate. Solution In HA cluster (A-P) scenarios when one of the monitoring interfaces present in the HA config goes do...

ezhupa · 11-13-2024

Description This article describes out-of-sync issues caused by a VPN certificate.local between a FortiGate and FortiManager in a Backup mode ADOM. Scope FortiGate, FortiManager. Solution Randomly FortiGate checksums change and this causes the FortiG...

ezhupa · 10-23-2024

Description This article describes issues with virtual servers in HTTP mode after upgrading to the newer versions of the v7.4 branch, such as v7.4.3-v7.4.5. Scope FortiGate. Solution Consider the following configuration working in the v7.4.1 firmware...

ezhupa · 12-12-2024

You would need to uninstall FCT and reinstall the new FCT version:Ref documents:https://docs.fortinet.com/document/forticlient/7.4.1/administration-guide/664703/manually-installing-forticlient-on-computers https://docs.fortinet.com/document/forticlie...

ezhupa · 12-12-2024

Try with the same version of FCT on the Windows 10 machine (so 7.2.4)If it works then we can rule out the FCT version as the issue here.

ezhupa · 12-12-2024

Are you using certificate authentication for your SSL VPN authentication method? If so can you check in any of the local-in policies if you have virtual-patch enabled? https://community.fortinet.com/t5/FortiGate/Troubleshooting-Tip-Client-Certificate...

ezhupa · 12-12-2024

Hello, In order for the cert to be used in SSL Inspection, you would need the cert to have CA: TRUE flag so it can inspect the traffic and decrypt it. If that is not the case then you cannot use the particular cert in your SSL Inspection profile.

ezhupa · 12-12-2024

Both devices are the same? For e.g both are windows 10 with the same version of FCT?

User Statistics

User Activity

Technical Tip: Health status of FortiSwitch showing as 'Unknown' under Managed FortiSwitches

Technical Tip: Transport method changes to 'Auto' after configuring IPSEC through GUI in v7.6.2

Troubleshooting Tip: HA cluster does not failover when when of the monitoring interfaces goes down.

Technical Tip: FortiGate checksum changes and FortiManager Backup Mode device status becomes out-of-sync

Technical Tip: HTTP Virtual Servers not working after upgrade to v7.4.3+

Re: IPSEC VPN tunnel

Re: IPSEC VPN tunnel

Re: The Forticlient VPN is not working. No response after entering the sign in info. No error messag

Re: SSL Inspection

Re: IPSEC VPN tunnel

Technical Tip: Web filter is not blocking websites...

Technical Tip: SSL VPN on PPPoE issues after upgra...

Technical Tip: HA issues after upgrade to v7.2.9 f...

Technical Tip: Dial-up IPsec flapping issues after...

Technical Tip: Set up a transparent proxy within a...

Re: Redundant dial-up VPN FG to FG

Re: Ha sync config delay

Re: DNS Virtual Server load balancing to real serv...

Re: Direction incoming vs outgoing in logs (Fortig...

Re: Route vpn ipsec comes from port mgmt

KCS

User Statistics

User Activity

You are leaving our website