Re: FortiGate TLSv1.3 upgrade

kumarh · 12-23-2024

Description This article explains the role of TVC (Tunnel Virtual Connection) in SSL VPN debugging on FortiGate. Scope FortiGate. Solution TVC refers to the SSL VPN client connection process on FortiGate. Debugging TVC helps diagnose issues in tunnel...

kumarh · 12-04-2024

Description This article describes why IAM users with the BPS product may not see the new BPS request type in the ticketing portal when using customer impersonation: Scope FortiCloud. Solution The issue occurs because the UI hides the BPS request typ...

kumarh · 11-21-2024

Description This article describes how to fix the following error 'VM resource exceeds license limit, CPU:4/1': Scope FortiGate. Solution If FortiGate is in the HA cluster then both FortiGate units should have identical and valid licenses with matchi...

kumarh · 11-17-2024

Description This article describes how to address an issue where the FGSP recv_err counter increases in FortiGate clusters, which may indicate session synchronization errors. Although the increase in this counter may not immediately affect cluster pe...

kumarh · 11-17-2024

Description This article describes how to address the issue of missing 'FortiView Source Interfaces by Bytes' data in the logs, even when the wan1 interface is specified as the source. Scope FortiGate. Solution This behavior occurs because FortiGate ...

kumarh · 11-02-2024

Could you please share the forward traffic and debugs logs. You can run following command on Fortigate: diag debug flow filter addr X.X.X.X Y.Y.Y.Y and diag debug flow show function enablediag debug console timestamp enablediag debug flow show iprope...

kumarh · 10-25-2024

Hello, The recent post in October likely includes updates and additional information on previously disclosed vulnerabilities.

kumarh · 10-24-2024

Hello, FortiGate does not have a built-in feature that provides CLI output of every change like Cisco ASA does with its "commit" commands. However, you can enable admin activity logging to capture configuration changes in FortiGate’s logs. This will ...

kumarh · 10-21-2024

Hello, Kindly check and edit the computer registry to enable TLS 1.3:Go to \HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols If 'TLS 1.3' is not displaying as a child path under 'Protocols', create it. 'Right-c...

kumarh · 10-05-2024

Did you try reinstalling FortiClient? Also, could you share the FortiClient debug logs?

User Statistics

User Activity

Technical Tip: Debugging SSL VPN Using TVC on FortiGate

Customer Service Tip: BPS Request Type Missing for IAM Users in Ticketing Portal

Technical Tip: What to check when 'license status is changing to Invalid due to VM resource exceeds license limit'

Troubleshooting Tip: FGSP recv_err Counter Increasing in FortiGate Clusters

Troubleshooting Tip: Missing 'FortiView Source Interfaces by Bytes' in logs

Re: Different VLAN unable to SCAN to PC using SMB

Re: PSIRT Advisories

Re: Personal logging of FortiGate Changes