Technical Tip: Deep inspection with mTLS

ametkola · 04-27-2025

Description The article describes an issue with the HA pair not syncing the configuration, and the 'get sys ha status' commandReturns all zeros for the secondary device. Scope FortiGate. Solution When configuring certain interfaces as HBDEV, both the...

ametkola · 03-26-2025

Description The article below describes an issue after the firmware update of the FortiGate on v7.4.6. The SNMP server stops showing data for the event: fgAvVirusDetected with OID .1.3.6.1.4.1.12356.101.8.2.1.1.1 Scope FortiGate. Solution The followi...

ametkola · 02-18-2025

Description The article below describes an issue where FortiGate prompts user to choose a certificate despite the admin settings not requiring a client certificate. This behavior impacts usually the devices after the firmware upgrade to v7.0.17, v7.2...

ametkola · 01-22-2025

Description This article describes an issue related to websites classified and being blocked by proxy as 'Malicious Website'. Scope FortiGate, FortiProxy. Solution The following scenario describes an issue related to websites classified and being blo...

ametkola · 12-12-2024

Description How to disable logs being logged and forwarded to FortiAnalyzer. Scope FortiGate. Solution This article describes how the logs can be stopped logging in Memory/Disk and being forwarded to FortiAnalyzer from certain firewall policies. In t...

ametkola · 04-28-2025

Hello @Mirza_Asad2723 , To further check the website categorization you can search the name of the website in the link below: https://www.fortiguard.com/webfilter Regards,

ametkola · 04-28-2025

Hello @AEK , You can check the Maximum Values table in the link below by choosing the FOS and type of device : https://docs.fortinet.com/max-value-table https://www.fortinet.com/content/dam/fortinet/assets/data-sheets/fortigate-1800f-series.pdf Regar...

ametkola · 04-28-2025

Hello @canoas , Once you create the CSR the public +private key are by default save in the hardware of the device.You can export the private key if you have created a password , if there was no password then firewall will encrypt the private key with...

ametkola · 04-28-2025

Hi @KondoTakumi , Regarding your queries, yes as explained above the SSL VPN is no longer support from v7.6.3 and onward. As a working scenario Fortinet published a documentation to migrate to IPsec dialup >>https://docs.fortinet.com/document/fortiga...

ametkola · 04-28-2025

Hello @gianlucats , Are they shown in the format as in the documentation below ? >> https://docs.fortinet.com/document/fortigate/7.6.0/administration-guide/43711/asset-identity-center-page regards,

User Statistics

User Activity

Technical Tip: HA not Syncing - cheksum dump: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Technical Tip: SNMP stops showing data for fgAvVirusDetected event.

Technical Tip: Certificate prompt on Admin interface

Troubleshooting Tip: Proxy detects the website as 'Malicious Website'

Technical Tip: Disable certain logs being forwarded to FortiAnalyzer

Re: UNABLE TO ALLOW/EXEMPT SPECIFIC WEBSITE WHICH HAS BEEN BLOCKED BY FORTIGATE

Re: Question about limits on displayed data in FortiOS

Re: SANS Certificate installation for HTTPS admin Certificate

Re: SSL-VPN Tunnel Mode Support with FortiClient in FortiOS 7.6.3 and Beyond

Re: Is it possible order devices listed in Asset&Identies ?

Technical Tip: Deep inspection with mTLS

Re: SANS Certificate installation for HTTPS admin ...

Re: SSL-VPN Tunnel Mode Support with FortiClient i...

Re: Fortigate 80E No event logs

Re: Fortigate static route issue || lower distance...

Re: Unable to add FortiGate to FortiManager

Re: New 30G modell - cant activate AV profile

Re: SSL VPN supported on FGR-60F

Re: Difficulty Finding SSL VPN Configuration on Fo...

KCS

User Statistics

User Activity

You are leaving our website