Description This article describes how to move the order local-in policy
to block traffic and delete existing policies. Scope FortiGate v6.4.x,
v7.0.x and above, Solution In the below example, we are creating two
policies allowing all IP addresses fr...
Description This article describes how to create custom port services
from GUI and how to add them to firewall policy when there is a
requirement to use. Scope FortiGate. Solution As shown in the below
image, select policy & object and choose Service...
Description This article describes how to create a loopback interface
for FortiSwitch CLI and make sure communication between both loopback
interfaces on FortiGate and FortiSwitch works. Scope FortiGate v7.0.x
and higher. Solution There will be a sit...
Description This article describes how to create a loopback interface
from FortiGate GUI. Scope FortiGate. Solution Go to Network ->
interface, select 'Create new' and choose Interface. Give a name for the
interface and then choose the type drop-down...
Description This article describes how to create a static route on
FortiGate from the GUI Interface. Scope FortiGate. Solution In GUI, go
to Network -> Static Routes and select 'Create New'. As shown in the
below diagram, give the destination address...
Hello @mhaneke , No problem. Did the new command work, have you tested
them? Best regards, Manasa. If you feel the above steps helped resolve
the issue, mark the reply as solved so that other customers can get it
easily while searching for similar sc...
Hello @mhaneke , Thank you for contacting the Fortinet Forum portal.
Please use the below commands: # diagnose debug disable # diagnose vpn
ike log-filter dst-addr4 [remote-peer] (public IP of user PC which
you're trying to connect-remote-peer ip)# d...
Hello @Hassan-wahab , Thank you for contacting the Fortinet Forum
portal. As mentioned by @ozkanaltas we cannot have direct public wan IP
on the interface AWS hosted fortigate. Please refer to the below
document for guidance :
https://fortinetweb.s3....
Hello @TimeCop79 , Thank you for contacting the Fortinet Forum portal. I
understand you are having issues with VIP. Here are some ideas you could
try. First of all, I would recommend running the sniffer on all hops to
verify where the traffic is stuc...
Hello @GASS , Thank you for your update. If you would like to collect
logs on why devices interface are going down use the below automation
stitch -If you want to capture device shutdown and email notification as
below Best regards, Manasa. If you fe...