I've discovered what looks like a bug in FortiOS 7.4.6 and am posting
this in case anyone else runs into the same issue. It's not currently
listed as a known issue in the release notes. After upgrading to FortiOS
7.4.6 on our FortiGate-80F firewalls,...
After updating some firewalls to FortiOS 7.4.4 I am no longer able to
log onto them using LDAP authentication. Local accounts are not
affected. I have tested my credentials on the LDAP server screen and
confirmed that I can authenticate, so this look...
I’m curious to know at which end of a VPN tunnel most people apply
restrictions. My thoughts are that you should apply restrictions near
the device you’re trying to protect. So I would allow all traffic from a
branch office to a hub and restrict acce...
Since upgrading to FortiClient 6.2, I have been unable to use my SSL
VPN. It gets stuck at 98% and then gives up. I have now upgraded to
FortiClient 6.4.0 and continue to have the same problem There's a
history of this issue with FortiClient SSL VPN ...
Yes, the FortiExtender gets an IP address from the DHCP server and I can
ping it from the FortiGate. The same applies with a static IP. I can
also browse to the web interface.
I suspect that there are problems with FortiExtender when using either
FortiOS 7.4.6 on the FortiGate or FortiExtender firmware 7.4.6. I've
tried multiple combinations of firmwares and some work and others don't.
Sorry, I've lost track.I also found t...
Turns out FortiOS 7.4.6 works fine with older Extender firmware. I’ve
logged a ticket with support and it has been escalated. Will update when
I have more information.
According to @sferoz, certificate's chains should now be checked. So if
you haven't installed the root CA certificate on your device, we have a
new bug/change in behaviour in 7.4.5.