Hi, Like the title suggests, like trying to configure a Hairpin-NAT (
SSLVPN > LAN ) I got across the most annoying thing ever. I did
configure some so far, but only from LAN > LAN this one I think it's a
first. This works ( SSLVPN > LAN ) for some r...
Hi, Anyone else noticing issues with login to SSLVPN using SAML with
Entra after upgrade to 7.0.17 for users with FortiClient 7.4.X ? Did an
upgrade on FOS to a client and it broke the connection for newer
versions butwith FortiClient 7.2.X it appear...
Hi,Hoping that someone could help in regards to the correct OID required
to query FortiAuth-VM in order to get the number of FortiTokens
available for usage, since the one I've found in a old forum post is not
returning the correct value -
https://co...
Hi, Has anyone encountered the situation where a user disconnects from
idle-timeout ( 300s ) and the Reconnecting just keep happening after a
good couple of seconds ( about 60s ) and lots of logs with SSL web
application blocked ?FGT : 7.0.15 and FCT...
Hello, I was wondering if someone could shed some light on how the
following can be achieved, if it can.When 2FA is configured for users
that are connecting to SSLVPN, that are either via
RADIUS/FortiAuth/FortiToken or using a 3rd party OTP app, I no...
ok, so im kinda lost in the replies that you and Markus are having.what
is currently not working or what is working?after the user connects to
the wifi, it gets a ip and can resolve the wifi intreface fqdn and fac
fqdn, right ?is the captive portal b...
try using the commands described here.
https://community.fortinet.com/t5/FortiGate/Troubleshooting-Tip-IPsec-VPN-tunnels/ta-p/195955if
the ipsec params match, then make sure that you have route(s) and fw
rule(s) for the ipsec.
hi,is this what you are looking for
?https://docs.fortinet.com/document/fortigate/7.6.3/administration-guide/221346/ipsec-monitorhttps://community.fortinet.com/t5/FortiGate/Technical-Tip-How-to-add-IPsec-monitor-on-dashboard-widget/ta-p/241471
in thi...
config firewall auth-portalset portal-addr
"guest.auth.mypublicdomain.com"end(this is not the portal address, but a
requirement according to the article) portal-addr setting must be an
FQDN that resolves to the interface IP address of the guest SSIDh...