Re: FortiGate TLSv1.3 upgrade

kumarh · 11-17-2024

Description This article describes how to address an issue where the FGSP recv_err counter increases in FortiGate clusters, which may indicate session synchronization errors. Although the increase in this counter may not immediately affect cluster pe...

kumarh · 11-17-2024

Description This article describes how to address the issue of missing 'FortiView Source Interfaces by Bytes' data in the logs, even when the wan1 interface is specified as the source. Scope FortiGate. Solution This behavior occurs because FortiGate ...

kumarh · 11-15-2024

Description This article describes how to address an issue where DHCP-Proxy on FortiGate with an external DHCP server does not forward DHCP option 119, affecting remote IPsec clients using DHCP requests to obtain domain search lists. This issue impac...

kumarh · 10-28-2024

Description This article describes how to resolve a common error encountered while configuring an IPsec dial-up tunnel on FortiGate when mode-cfg is enabled. Scope All FortiGate firmware version. Solution When mode-cfg is enabled, FortiGate acts as a...

kumarh · 10-14-2024

Description This article describes the necessary FortiGate configuration changes for integrating the 3CX Phone System with a network. Scope All FortiGate Firmware. Solution Traffic flow would be as follows: Lan-------------Fortigate(wan)-----------3C...

kumarh · 11-02-2024

Could you please share the forward traffic and debugs logs. You can run following command on Fortigate: diag debug flow filter addr X.X.X.X Y.Y.Y.Y and diag debug flow show function enablediag debug console timestamp enablediag debug flow show iprope...

kumarh · 10-25-2024

Hello, The recent post in October likely includes updates and additional information on previously disclosed vulnerabilities.

kumarh · 10-24-2024

Hello, FortiGate does not have a built-in feature that provides CLI output of every change like Cisco ASA does with its "commit" commands. However, you can enable admin activity logging to capture configuration changes in FortiGate’s logs. This will ...

kumarh · 10-21-2024

Hello, Kindly check and edit the computer registry to enable TLS 1.3:Go to \HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols If 'TLS 1.3' is not displaying as a child path under 'Protocols', create it. 'Right-c...

kumarh · 10-05-2024

Did you try reinstalling FortiClient? Also, could you share the FortiClient debug logs?

User Statistics

User Activity

Troubleshooting Tip: FGSP recv_err Counter Increasing in FortiGate Clusters

Troubleshooting Tip: Missing 'FortiView Source Interfaces by Bytes' in logs

Troubleshooting Tip: DHCP-Proxy on FortiGate with external DHCP server not forwarding DHCP option 119

Troubleshooting Tip: How to fix error "Must set IPv4 or IPv6 range. object check operator error, -45, discard the setting Command fail. Return code -45"

Technical Tip: Configuring FortiGate for 3CX Phone System

Re: Different VLAN unable to SCAN to PC using SMB

Re: PSIRT Advisories

Re: Personal logging of FortiGate Changes