Description This article describes about issue due to the
misconfiguration of the certificate on the RADIUS client machine. When
the client connects to WiFi SSID with RADIUS authentication, it gives a
bad password error and when checking from the RAD...
Description This article describes an issue with the RADIUS server EAP
type that cannot be processed by the server when the user connects to
the Wi-Fi SSID. While checking RADIUS server logs, the following logs
were observed for the user: Error logs ...
Description This article describes how to handle an issue where
FortiClient drops connection at 70-80% completion with no error. Scope
FortiGate. Solution If a FortiMobile Token is used, the error manifests
after entering a FortiMobile token code at ...
Description This article describes how to resolve HA out-of-sync issues
with the 'Unknown' error, as well as cases where, when trying to access
the secondary from the CLI, the following error is encountered: execute
ha manage 1 ssh: connect to host 1...
Description This article describes how to resolve an issue where the
Outlook application gets disconnected after connecting behind FortiGate,
but works if it is directly accessed. Trying to reinstall the Outlook
application and following a solution f...
@brar45 1. In a hub-and-spoke model using FortiGate VM in Azure with
SD-WAN feature, it is possible to have ExpressRoute and internet as the
underlay networks without limitations. You can configure SD-WAN rules to
route traffic based on your requirem...
@luccap07 Make sure that your web filter is in flow mode and it is able
to identify category. If you see category shows unknown then please
provide screenshot of error and also provide log output.
Hello @ctyctyctctcty , I would suggest to soft restart BGP route as
below and if we still have issue, you can run bgp debug as mentioned:
https://community.fortinet.com/t5/FortiGate/Technical-Tip-BGP-soft-reset-to-refresh-BGP-routing-table/ta-p/19014...
@FTAdmin You need to follow steps as below: 1. You need to add 3rd party
address in phase-2 selectors of main firewall if that traffic is behind
main firewall 2. You can configure SNAT/DNAT for this traffic to moved
traffic from main to third party w...
@piaakit1210 Based on details and requirements , you can configured
firewall policy as you mentioned, From: AnyTo: AnySource:
AllDestination: "Tor-Relay.Node" and
"Malicious-Malicious.Server"Schedule: AlwaysAction: DenyLog Violation
Traffic: EnabledE...
