I've seen long time ago and even now with newer versions of FortiOS that
when managing one VDOM, I can actually see important information about
other VDOMs in CLI. I just rechecked it in a device with 6.2.10 where I
have been given access to one VDOM...
I have a bit of confusion about IPv6 and SLAAC. I am testing this before
trying to use it for our public wifi network. My problem is with
preferred and valid lifetimes which are set as 7 days and 30 days
respectively by default. I tested with a Win20...
I have used mgmt ports on fgt's in the past without problems: I have two
HA clusters, each one of them has their own IP in one and the same
network and I used NAT in the firewall rule to get access to the other
cluster which was not the main cluster....
Hello!I want to implement Decrypted Traffic Mirror feature but I haven't
seen a Fortinet document that would explain the Destination MAC meaning.
What is it?1a. The MAC for the webserver whose decrypted traffic will be
mirrored?1b. The MAC for the ca...
I have a question in understanding certain FortiAnalyzer logs, ver
6.4.7. Webfilter blocks access to a certain webpage and categorises is
as Phishing. When I tested access and checked logs in FortiView, found
the problematic entry, doubleclicked and ...
I add here another one I just discovered as an addition to the first
example.3. Multicast debug command:diag ip multicast
group-membershipThis also shows all the (usually nicely descriptive)
names of interfaces in all VDOMs.
I mentioned this to a fellow administrator and he recalled that this has
been actually acknowledged by
Fortinet:https://www.fortiguard.com/psirt/FG-IR-22-036
I am concerned about these commands: 1. This command: diag netlink
interface listThis shows ALL the interfaces with their names, even
outside the VDOM I am limited to administer. If there are different
tenants then typically the interfaces are named ...
TL;DR: It may be that I resolved the issue. It was about too short
timers. When setting it to 3600/1800 all started working normally.Here's
more for those who want to know the details.I thought maybe the Win2019
server is not really meant for SLAAC b...
