Hello there, We've been having some issues with clients using
Forticlient after upgrading to Windows 11. FortiClient is on last
version 7.0.2.0090 Client stops at 80 % showing a "Server may be
unreachable" -14.Logs show everything fine and stops afte...
Good day, I'm setting up a Tacacs.net server to authenticate all our
FGTs and it's working fine.But, when a diferent (TacacsUserGroup) tries
to log in a FGT which doesn't have configured it's
(TacacsAdmin_profile), it logs in as a super_admin instead...
Hi I have a Fortinet 50B with FortiOS V. 4.0.0 Build 0092, 090220 and
using FSAE 3.00.37 New authentication rules called " Identity based
policy" works fine with Windows AD, but we need also to allow navigation
to " Guest" users in our network. Forti...
Hi, I' m triing to do a dialup tunnel between forticlient and Fortigate
50B behind a Cisco Router. This router has a GRE Tunnel configurated, so
I can' t map UDP port 500 to Fortigate. My question... Is possible to
change destination port 500 on fort...
Hi , Does anybody know how Server Load Balance Feature checks the
reachability of a server? Does it try to check with a ping request? Does
it check the service status from server?.. Please, if anybody knows how
it works post your comment here. Thanks...
Good morning Jangelis, Thanks for replying. We tried with different
versions of the FortiClient and the error still appears. We tried also
W11 client, and VPN won't come up... Our FortiGate firmware is kinda
outdated (4.0.X) so before going more deep...
Hi,I had the same problem: it seemed than the process was not running in
the Fortigate. I solved it by adding the user-group to the policy
ssl.vpn-->internal_interface; before this I only had IP addresses
configured in the policy. When I put the user...
Hi ! Thanks, but it´s the same solution that we prove in our Fortigate.
The fact is that Guest Users never go outside, and auth fail because
FSAE tell' s they aren' t in any A.D. group. It seems as if this
FSAE_Guest_Users group does not function we...
Hi all. Finally is all ok. I have a Virtual IP defined for this port
(udp 500) and Fortigate does not take control, only bypass the frame.
Thanks to all anyway. Lluis Arasanz
Hi again, Here is the Test log from FortiClient. You can see than Natt
is on and destination port is 500 on first message. On others dialup
VPN, system change from udp500 to udp4500 on 3rd message, after IKE
phase 2.. and always as source port, not d...