Description This article describes how FortiGate blocks the TLS
Encrypted Client Hello (ECH) and forces the end client to send the inner
SNI in clear. When using the Encrypted Client Hello (ECH), TLS 1.3
protocol may split the Client Hello massage in...
Description This article describes how to resolve an issue experienced
on a 7000F series when the CLI on the FIM shows a mismatch message
'Error: FIM1 and FIM2 boardtype mismatch detected!' during the boot
process: ----------------------------------R...
Description This article describes how to power-off/power-on any slot on
a FortiGate 7000 series from the Shelf Management Module (SMM). This
procedure may be useful in situations where one or more FPMs did not
restart correctly following a power out...
Description This article describes how FortiGate calculates the BFD
Transmit Interval and Detection Time in a BFD peering connection. Scope
FortiGate v5.6 and above. Solution The Bidirectional Forwarding
Detection (BFD) is a network protocol used to ...
Description This article describes how to collect logs for
troubleshooting purposes after a PSU failure occurs on a FortiGate 7000E
series chassis. Scope FortiGate 7000E series Shelf Manager Module (SMM).
Solution This article contains useful command...
Hi @Asyraf , You may have gone already through the initial
troubleshooting process explained in the article
below:https://community.fortinet.com/t5/FortiAnalyzer/Technical-Tip-How-to-gather-information-and-fix-high-CPU-and-Mem/ta-p/197534
If yes, ple...
Hi @Jaspervdb , If the server is receiving the public IP, it means you
are NATing that traffic somehow. Check the routing, where the IPsec
phase2 traffic is being sent to (interface and next hop). Check also the
priority order on the firewall policie...
Hi @Ireda1 , Please bear in mind that I do not know in details your
network configuration and setup and you can find a much better advice
from your local SE or PS service. From my understanding to achieve what
you are trying to achive, all members ha...
Hi @Ireda1 , Currently you have two sites with FortiGate HA cluster
running FGCP a-p in each site. I am not aware of your network
infrastructure but you may not be able to synchronise the whole config
between those two sites as I guess you have diffe...