Description This article helps to identify in what order the route map
rule is processed. Scope FortiGate. Solution The route map rules will be
sorted by ID. The rule ID will determine which rule will be matched
first. As an example, configure the BG...
Description This article describes how to decrypt the HTTPS traffic on
the client using Wireshark. While using virtual servers on FortiGate, it
is sometimes necessary to decrypt the traffic on the client end to
isolate the issue further. Scope Window...
Description This article describes that in some environments, sometimes
it is necessary to create a VIP with external FQDN to map with an
internal server IP address. Follow the below steps to create a VIP: Go
to Policy & Objects -> Virtual IPs and se...
Description This article describes how to use the hardware switch to
manage the FortiSwitches. Scope All FortiOS. Solution Enable the
FortiLink option from the CLI. config system interface FGT(interface) #
edit Hardware_Switch FGT(Hardware_Switch) # ...
Description This article explains how the FortiGate calculates the OSPF
version 2 cost based on RFC 2328 and offers a solution for incorrect
measurements. Scope FortiGate. Solution When OSPF neighborship forms
with a software switch, it shows a cost ...
Greetings, You would like to use ICMP redirect to inform the host about
the better next hop to reach a certain destination. First of all, enable
the following settings on the interface, # config system interface edit
"interface_name" set icmp-accept-...
Hello @Arye_R It is expected to get disconnected after 6 seconds once
there is a network interruption. In this case, you can set option
always-up,
https://docs.fortinet.com/document/forticlient/7.2.3/administration-guide/437773/save-password-auto-con...
Hello Reza, I understand you have a problem loading the sdwan rule page
after upgrading to Fortios patch 7.4.2. There has been a known issue(ID)
0984478: SD-WAN Rules GUI Keep Loading This issue is going to be
resolved in patch 7.4.4. As a workaround...
Greetings, A traffic shaping policy can be used for interface-based
traffic shaping by organizing traffic into 30 class IDs. In the traffic
shaping policy, you can select the ipsec virtual tunnel interface to
create policy. I checked on fortios patch...
Hello, The issue could be related to negotiation. As far as I understand
from the description, negotiation is not taking place properly. It would
be helpful to run the like debugs when the issue arises. diagnose vpn
ike log-filter dst-addr4 diagnose ...