Hi, Like the title suggests, like trying to configure a Hairpin-NAT (
SSLVPN > LAN ) I got across the most annoying thing ever. I did
configure some so far, but only from LAN > LAN this one I think it's a
first. This works ( SSLVPN > LAN ) for some r...
Hi, Anyone else noticing issues with login to SSLVPN using SAML with
Entra after upgrade to 7.0.17 for users with FortiClient 7.4.X ? Did an
upgrade on FOS to a client and it broke the connection for newer
versions butwith FortiClient 7.2.X it appear...
Hi,Hoping that someone could help in regards to the correct OID required
to query FortiAuth-VM in order to get the number of FortiTokens
available for usage, since the one I've found in a old forum post is not
returning the correct value -
https://co...
Hi, Has anyone encountered the situation where a user disconnects from
idle-timeout ( 300s ) and the Reconnecting just keep happening after a
good couple of seconds ( about 60s ) and lots of logs with SSL web
application blocked ?FGT : 7.0.15 and FCT...
Hello, I was wondering if someone could shed some light on how the
following can be achieved, if it can.When 2FA is configured for users
that are connecting to SSLVPN, that are either via
RADIUS/FortiAuth/FortiToken or using a 3rd party OTP app, I no...
why not just delete the static route, which will take precedence
always?other options would be to either do a automation stitch to
delete/disable the static route when a event for the ipsec is down or
https://community.fortinet.com/t5/FortiGate/Techn...
what i would do are these:- the custom service, i would remove udp-port
and iprange, leave a classic object with only tcp port 8445 that's
needed and use it in the firewall rule- the vip, i would remove the
extintf and leave any instead afterwards do...
do you have an ip pool configured with X.X.24.153 ? if so, set arp-reply
disable to
it.https://community.fortinet.com/t5/FortiGate/Technical-Tip-ARP-reply-setting-in-Virtual-IP-IP-Pool/ta-p/192527
