Hi all,I want to create a policy that only allow Google Authenticator
traffic ( Google Authenticator installed on my phone) but deny other
traffic. But it seems that in my 100E FGT, in the application signature,
it has only microsoft.authenticator. P...
Hi guys, I haven't implemented this thing before. So please tell me if
it is possible to implement like below:Our Fortigate at HQ has two FTTH
WAN lines (WAN1, WAN2). I have configured two default routes with the
same distance but different priority ...
Hi @sw2090, 1. I did a lab (on EVE-NG) for this case and it is exactly
like you wrote. The traffic go to branch subnet (through VPN2) will go
out WAN2 port. Thanks much.2. I also test the case when I just configure
one default route (through WAN1 at ...
Hi @sw2090,So even on HQ FW, we have default route (through WAN1). But
if traffic go trough VPN2, it will go out WAN2 port?. But how WAN2 port
knows how to reach WAN1 at branch FW, is it just send traffic to other
site of the link (ISP site) ?. Pleas...
Hi @emnoc, @sw2090. The default route here is default route on HQ
firewall (please refer to my attached image, in this case it through
WAN1). Eg, I have subnet B on the branch. And I config on HQ FW a static
route point to the subnet B through VPN2 (...
Hi Yurish, I want to clear about how packet flows in this case. As I
said, "I have configured two default routes with the same distance but
different priority" (default route WAN1 is preference). So even if I can
create the second IPSEC VPN successfu...
Hi @emnoc, Thanks for reply. I want to understand more about this, for
example, I set up a default route (with lower priority) through WAN1, so
all VPN setup packet must go through WAN1 (default route) first or it
can use its own default route (with ...
Broad. Integrated. Automated.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.