Fortinet Community

asengar · 05-25-2023

Description This article describes how to deploy from non-SD-WAN to SD-WAN setup by adding the ISP links (interfaces) to SD-WAN members without deleting the references. Scope FortiOS 7.0.x and Higher. Solution - To deploy SD-WAN on the current runnin...

asengar · 04-12-2023

Description This article describes the issue when the customer is unable to see the forward traffic logs either in memory or disk or another remote logging device. Scope FortiOS. Solution Scenario: - The customer was getting an error at 2% (loading t...

asengar · 03-05-2023

Description This article offers solutions for scenarios where the user attempts to add new entries in the external threat web server, but it displays as invalid in the firewall. Scope Any supported version of FortiGate, FortiOS. Solution A normal Fir...

asengar · 03-01-2023

Description This article describes the behavior of the outgoing traffic once VIP is created without port forwarding and IP Pool, only enabling the NAT in the policy. Scope FortiGate. Solution Topology: User Machine <--------> FW <-------> Internet Te...

asengar · 05-09-2023

Hi @maromero Thanks for your query. You can configure multiple web-filter profile with the category you want. I checked and tried to configure 2 web-filter profile with same categories and it is working as expected. Kindly share the output of below c...

asengar · 05-08-2023

Hi @albaker1 Can you share the policy configuration on the firewall, and also the FQDN details. Is the FQDN resolving on the firewall or not ? You are initiating the SIP traffic based on IP address or you have defined the FQDN, so while traffic is be...

asengar · 04-20-2023

Hi @Umesh As per the shared details, I can see you created a local user with username as test and password as test123. You have enabled 2FA for the test user to email test@gmail.com The configuration is fine, but you mentioned still you are getting t...

asengar · 04-13-2023

Hi @Umesh As you confirmed that the users are remote Radius users, so in that case you have to check with the Radius server if you have option to enable 2FA via email. So when the user will enter the username and password the authentication request w...

asengar · 04-10-2023

Hi @mwatkins Kindly share the phase-1 configuration for any one the spoke tunnel for which you are seeing the weird peer id. Can you confirm is the peer id seen is matching the local id ? Thanks

Fortinet Community

User Statistics

User Activity

Technical Tip: How to add the interface in SD-WAN member without deleting references

Technical Tip: Unable to see the forward traffic logs (getting error of stucking at 2%)

Troubleshooting Tip: Unable to add extra entries under the 'external threat' section - the external threat feed contains invalid entries

Technical Tip: Traffic not flowing via interface IP after configuring the VIP.

Re: Invalid FortiGuard category. Cannot have the same FortiGuard category in multiple filters

Re: Using FQDNs for non-web traffic

Re: Email Two-Factor Authentication on FortiGate in dialup vpn

Re: Email Two-Factor Authentication on FortiGate in dialup vpn

Re: PeerID between two fortigates

Technical Tip: How to add the interface in SD-WAN ...

Technical Tip: Traffic not flowing via interface I...

Re: FortigateCloud Active Error - FortiOS 7.2.4