Description This article describes the issue with certificates in Push
notifications on mobile Tokens. Scope FortiGate, FortiToken. Solution
After configuring the FTM-Push settings the user gets SSL secure
connection failure, this is triggered due to...
Description This article describes that If users are using FortiClient
to connect with SSL VPN configured on the FortiGate then have mentioned
primary and secondary remote gateway for failover in case the primary
goes down. Now in this setup, the con...
Description This article describes how to configure a transparent proxy
in FortiGate to forward specific destination traffic to Web Proxy
Forwarding Servers. Scope All supported versions of FortiGate (make sure
the FortiGate support for proxies - som...
Description This article provides information about local out traffic
like sending backup to the TFTP server from a specific source address.
Scope FortiGate. Solution By default, if the FortiGate has to send any
self-generated traffic, it would choos...
Description This article describes how to secure an interface with
captive portal enabled. By default, if captive portal is enabled with a
local portal, the user's browser will be redirected to the FortiGate
interface IP and port. This workaround mak...
Hello, Seems you are moving to the new product, we do have the feature
you mentioned. The difference is we call it as central NAT , it is up to
you how you want to utilize it. If you operate in central NAT mode you
can have all your NAT rules in one ...
Hello , I think you want to block geolocation address while allowing it
for a particular location or source range. You can achieve this by
simply using local in policy. By default the action is to deny for these
policies. So you have to follow the be...
Hello, As we understood you have already working Vlan subnets which
needs to be modified . Best way is to create Vlan but do not assign IP
for the moment (put unused dummy ip). However as you mentioned you
already have static addresses on Printer and...
Hi , It depends on you, if your downstream switches have multiple Vlans
configured and you just have a reverse route pointed towards the SW on
Fortigate,,,in this case you can simply create a rule with your physical
interfaces. And if you have vlans ...
Hi, It is expected only if you use SDWAN. However for your VIP (DNAT)
configuration you can map your dedicated interfaces . Your wan
interfaces would be listening to the incoming requests from outside. Yu
can also mention it as 0.0.0.0 as external on...