Technical Tip: 'All FortiGuard servers failed to r...

SAJUDIYA · 05-01-2025

Description This article describes SSL VPN changes that were applied from v7.6.3. Scope FortiGate v7.6. Solution From v7.6.3, SSL VPN tunnel mode will be removed, leaving only web mode (which will be referred to as Agentless VPN): Agentless VPN is di...

SAJUDIYA · 03-19-2025

Description This article describes about issue due to the misconfiguration of the certificate on the RADIUS client machine. When the client connects to WiFi SSID with RADIUS authentication, it gives a bad password error and when checking from the RAD...

SAJUDIYA · 03-12-2025

Description This article describes an issue with the RADIUS server EAP type that cannot be processed by the server when the user connects to the Wi-Fi SSID. While checking RADIUS server logs, the following logs were observed for the user: Error logs ...

SAJUDIYA · 11-18-2024

Description This article describes how to handle an issue where FortiClient drops connection at 70-80% completion with no error. Scope FortiGate. Solution If a FortiMobile Token is used, the error manifests after entering a FortiMobile token code at ...

SAJUDIYA · 11-17-2024

Description This article describes how to resolve HA out-of-sync issues with the 'Unknown' error, as well as cases where, when trying to access the secondary from the CLI, the following error is encountered: execute ha manage 1 ssh: connect to host 1...

SAJUDIYA · 02-11-2025

@brar45 1. In a hub-and-spoke model using FortiGate VM in Azure with SD-WAN feature, it is possible to have ExpressRoute and internet as the underlay networks without limitations. You can configure SD-WAN rules to route traffic based on your requirem...

SAJUDIYA · 11-05-2024

@luccap07 Make sure that your web filter is in flow mode and it is able to identify category. If you see category shows unknown then please provide screenshot of error and also provide log output.

SAJUDIYA · 10-16-2024

Hello @ctyctyctctcty , I would suggest to soft restart BGP route as below and if we still have issue, you can run bgp debug as mentioned: https://community.fortinet.com/t5/FortiGate/Technical-Tip-BGP-soft-reset-to-refresh-BGP-routing-table/ta-p/19014...

SAJUDIYA · 01-03-2024

@FTAdmin You need to follow steps as below: 1. You need to add 3rd party address in phase-2 selectors of main firewall if that traffic is behind main firewall 2. You can configure SNAT/DNAT for this traffic to moved traffic from main to third party w...

SAJUDIYA · 01-03-2024

@piaakit1210 Based on details and requirements , you can configured firewall policy as you mentioned, From: AnyTo: AnySource: AllDestination: "Tor-Relay.Node" and "Malicious-Malicious.Server"Schedule: AlwaysAction: DenyLog Violation Traffic: EnabledE...

User Statistics

User Activity

Technical Tip: Upcoming changes on SSL VPN modes starting from v7.6.3

Technical Tip: 'The certificate chain was issued by an authority that is not trusted.' error on RADIUS server logs when client connect to SSID

Troubleshooting Tip: 'The client could not be authenticated because the Extensible Authentication Protocol (EAP) Type cannot be processed by the server.' error for RADIUS server logs when client failed to connect to Wi-Fi SSID

Technical Tip: FortiClient drops at 70-80% with no error message

Troubleshooting Tip: HA status 'Unknown' and 'No route to host' error when accessing secondary device from CLI

Re: Fortigate SDWAN in Azure

Re: Web Filter issues

Re: BGP Routes Not Available issue

Re: Passing traffic from a remote office to the main office and then to a 3rd party

Re: Firewall policy denying all traffic question

Technical Tip: 'All FortiGuard servers failed to r...

Technical Tip: How to delete sniffer from CLI

Technical Tip: Lockdown ISL remain enabled even di...

Technical Tip: 'This FortiGate unit does not have ...

Troubleshooting Tip: ZTNA traffic denied because o...

KCS

User Statistics

User Activity

You are leaving our website