Description This article describes the issue when an SSID is not
broadcasted by the FortiAP even if the broadcast SSID is enabled on the
SSID. Scope FortiOS 7.0, 7.2, FortiAP. Solution When an SSID is created
on the FortiGate the broadcast SSID optio...
Description This article describes how to enable the force-admin
password change feature for FortiGate admin accounts. Scope FortiGate.
Solution To enable this feature it is mandatory to first enable the
password-policy status on the FortiGate: confi...
Description This article describes how to implement ZTNA TCP forwarding
for public-facing servers. Scope FortiOS , FortiClient, Forticlient EMS
Solution First, create a ZTNA destination on the EMS and apply the ZTNA
destination profile to the correct...
Description This article describes why FortiGate does not allow to
mention the set source-ip in syslog settings and keeps using the
Management interface as the source interface and IP. Scope FortiGate.
Solution When the Management Interface Reservati...
Description This article describes the basic requirements and best
practices before implementing BLE scan on FortiAP. Scope FortiAP,
FortiGate-FortiWifi. Solution FortiGate's Wireless Controller feature
along with FortiAPs (Access Points) that suppor...
I'm not recommending to use redundant link setup on FortiGate because
when you place this interface in monitor interface on HA on fortigate it
will not go down until both link fails
Hence both the switches are working independently a LACP or port channel
will not form , from your topology your 2 LACP ports from the FGT are
also connecting to 2 different switch here, your solution would be
either use one switch , or stack the swi...
To troubleshoot this : 1) Please install a wireshark on the client
machine and check if the VPN traffic is even generated or leaving
through the computer 2) If the traffic is not seen on capture then it
simply means that its an issue on endpoint, 3) ...
when you have a manual rule then the first selected WAN interface will
be used and then the second, Also note that SD WAN rules are policy
routes, To verify the proute traffic please refer this article:
https://community.fortinet.com/t5/FortiGate/Tec...
Once you enable the exclusive routing the on-link won't be able to get
any traffic so I can't think of any way how your VM's can even
communicate , I don't think its even possible may be it could be by
creating a static route entry on your computer a...