Description The article explains the debug logs, showing that the
FortiGate is receiving FortiGuard updates through a proxy server
configuration. Scope FortiGate. Solution To configure the FortiGate to
receive FortiGuard updates through a proxy serve...
Description The articles discuss how to identify the public IP address
when the FortiGate receives a private IP address via DHCP/PPPoE or when
it is manually configured with a private IP address. Scope FortiGate.
Solution The FortiGate has a private ...
Description This article describes how to troubleshoot and identify if
the port used by an application is already in use on the FortiGate. The
application is running on port 2000, but port 2000 is already being used
on the FortiGate for SCCP, which c...
Description This article indicates the options that must be enabled
while configuring IPsec VPN SAML-based authentication using loopback
Interface. Scope FortiGate v7.2.4 and later. Solution The configuration
of IPsec VPN SAML-based authentication is...
Description This article explains why the Container FortiOS (cFOS)
cannot perform source NAT runs in a docker on RedHat Enterprise 9.x
Linux VM. Scope Container FortiOS. Solution On RedHat Enterprise 9.x,
the default ip_tables module has been replace...
Greetings! To import a certificate into FortiManager and apply it to
managed FortiGates, follow these steps: 1. Import Certificates into
FortiManager:- Upload the CA certificate under the FortiManager's CA
certificate section.- Import the signed serv...
Hello, Please check by running continuous pings, as there might be
packet loss from your office to the destination IP address (10.1.0.20).
First, verify the actual underlay connection from 192.168.1.100 to
10.1.0.20 using a continuous ping test or a ...
Hello Sean, In way 1: It is correct , it will not move to another
interface if either of them is reachable. In way 2: it will not move to
another interface unless particular SLA categorically being used in
sdwan rules. Regards!
Greetings! Yes it is possible to isolate the spoke A from other spoke by
using network ID. Please check this document:
https://community.fortinet.com/t5/FortiGate/Technical-Tip-Use-case-of-Network-Ids-with-ADVPN-shortcut/ta-p/241025
Regards!
Greetings! We can set an expiration date or period for a local user on
FortiGate. If authentication is done via LDAP, the expiration can be
managed through the domain controller (DC). Regards!
