Re: Blocking of known malicious IP is not working...

mpapisetty · 01-08-2026

Description This article describes a scenario where traffic continues to match a firewall policy on a FortiGate even after the associated Virtual IP (VIP) has been removed. The article provides a step-by-step guide to resolving this issue by clearing...

mpapisetty · 01-08-2026

Description This article describes the expected behavior of the FortiGate-FortiManager (FGFM) tunnel reset during policy package installation. The FGFM tunnel reset is a brief interruption that occurs when a policy package is pushed to the FortiGate,...

mpapisetty · 01-08-2026

Description This article describes the steps to troubleshoot and resolve RX errors on a FortiAnalyzer interface. The errors are steadily increasing over time and are not related to bandwidth utilization. Scope FortiAnalyzer. Solution To troubleshoot ...

mpapisetty · 10-28-2025

Description This article describes hardware acceleration behavior on the FortiGate with NTurbo capability. When an IPS Policy is in use, FortiGate utilizes NTurbo to accelerate traffic and provides details on how the offload is performed and the step...

mpapisetty · 04-07-2025

Description This article describes a situation where a FortiManager is deployed in an air-gapped network, and the user cannot view the latest IPS signatures. Scope For FortiManager deployments in air-gapped environments where direct access to FortiGu...

mpapisetty · 01-21-2026

Glad that the issue is resolved. Kindly mark the relevant comments as solution so that others can benefit from the same.

mpapisetty · 01-21-2026

Hi @FortiSpain , I would not recommend doing that unless you are confident about each of the signatures and the traffic in the network. As such, it is best to leave it to FortiGuard to decide what should be allow and what should be block as it works ...

mpapisetty · 01-21-2026

Hi @FortiSpain , The first article clearly states the exact CLI you need to enter - config system settings set default-voip-alg-mode kernel-helper-based end I am not sure why would go to system settings and then click on CLI from there. Just access t...

mpapisetty · 01-21-2026

just open the CLI console and run them directly at the # prompt. 

mpapisetty · 01-21-2026

yes, that policy should do. 

User Statistics

User Activity

Troubleshooting Tip: Traffic continues to match firewall policy after Virtual IP removal

Technical Tip: FortiGate-FortiManager (FGFM) tunnel reset during Policy Package installation

Troubleshooting Tip: Resolving RX errors on FortiAnalyzer interface

Technical Tip: FortiGate IPS Offload behaviour with NTurbo and NP

Troubleshooting Tip: Unable to view latest IPS Signatures on an airgap FortiManager deployment

Re: IPS Signatures

Re: IPS Signatures

Re: PORTS

Re: IPS Signatures

Re: IPS Signatures

Re: Blocking of known malicious IP is not working...

Re: submit / upload file via JSON API Call

Re: IPS Signatures

Re: what is compromised host by verdict

Re: How to Block Source IP when detect port scan f...

Re: BGP Best Path

Re: FortiTester test case configuration per user?

Re: JSconsole access to Fortigate

Re: whitelist proofpoint

Re: FortiManager (7.4.6) no longer prepends policy...

KCS

User Statistics

User Activity

You are leaving our website