Technical Tip: How to create automation stitch tri...

wmichael · 08-22-2025

Description This article describes how to enable or disable POE (Power over Ethernet) on the interfaces of FortiGate models that support the feature. Scope FortiGate models that support POE. Solution Some FortiGate models support the use of POE on th...

wmichael · 08-17-2025

Description This article describes an issue where an IPsec tunnel will remain ‘up’ even when the binding interface is disabled. Scope FortiGate. Solution In this example, both FortiGates reach the Internet through port 1. The IPsec tunnel is bound to...

wmichael · 05-01-2025

Description This article describes how to create automation stitch triggers for when the FortiGuard web filter is unreachable and when they become reachable again. These can be used with an automation stitch action that will send an alert email when ...

wmichael · 04-21-2025

Description This article describes how to configure FortiGate to forward SYSLOG messages to FortiNAC so that FortiNAC can detect new devices connected to a FortiSwitch, using FortiSwitch event logs MAC_ADD, MAC_DEL, and MAC_MOVE. Scope FortiGate, For...

wmichael · 04-15-2025

Description This article discusses the cause of an issue when an interface is unable to be removed from a zone. Scope FortiGate. Solution Under some circumstances, an interface cannot be removed from a zone. Note: This article refers to interface zon...

wmichael · 11-28-2024

Hello, You can use the command ' diagnose sys mpstat ' to monitor utilization over a period of time. Delay is in seconds, loops is the number of times you want it to run.https://community.fortinet.com/t5/FortiGate/Technical-Tip-Deprecated-of-command...

wmichael · 11-26-2024

Lowest cost SLA strategy, the FortiGate will choose the link with the lowest cost that is meeting the performance SLA. The packet loss (5 consecutive lost) will determine if the link is active or inactive. If you have "update static route" configured...

wmichael · 11-15-2024

Hello Sozo_Admin Ensure logging on the implicit deny is enabled. See the following article: https://community.fortinet.com/t5/FortiGate/Technical-Tip-Implicit-deny-logs/ta-p/194602

wmichael · 10-21-2024

That's great to hear. With NAT enabled on the policies the traffic must be matching phase2 of the tunnel now.

wmichael · 10-18-2024

That message is indicating that the session is not being offloaded. https://docs.fortinet.com/document/fortigate/7.6.0/hardware-acceleration/734139/diagnose-sys-session-list-and-no-ofld-reason-field-np7-session-information not-established A TCP sessi...

User Statistics

User Activity

Technical Tip: How to enable or disable POE/+ on supported FortiGate models

Troubleshooting Tip: IPsec tunnel remains up even when the binding interface is disabled