Description This article describes the possible reason for seeing error
-9999 while creating a new tunnel or modifying an existing tunnel. Scope
FortiGate. Solution This error is usually seen when the configuration
being applied on the IPSec tunnel i...
Description This article describes the possible reason and solution for
the HA cluster failing to authorize on root fabric device with the error
'Cannot authorized device in Fabric'. Scope FortiGate. Solution While
trying to authorize the HA cluster ...
Description This article describes how to set up automation to block
invalid login attempts for an IPsec dialup tunnel with an automation
stitch. Scope FortiGate. Solution To block the invalid login attempts on
IPsec dialup tunnel, check for VPN even...
Description This article describes steps to create an Automation trigger
directly from the event logs Scope FortiGate, v7.6.0 and above. Solution
From v7.6.0, an automation stitch can be created directly from any
system events generated on the firewa...
Description This article describes why MFA is bypassed when the
user-case-sensitivity is set to 'enabled' under LDAP user settings.
Scope FortiGate. Solution The Token field is not displayed. The user is
created using the LDAP remote server with the ...
Hello @Aadar-Soomro,If you have Central NAT policy applied to the
outbound IPsec traffic your local IP would not be visible on the remote
firewall as it would be natted with outgoing interface or IP-POOL based
on the configuration.
Hello @grod777 ,Can you confirm what DNS settings you are using on the
firewall? Also from firewall can you resolve the below addresses? exec
ping service.fortiguard.net exec ping update.fortiguard.net exec ping
guard.fortinet.nethttps://community.fo...