Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
imathew
Staff
Staff

Created on ‎09-26-2022 01:00 AM Edited on ‎09-27-2023 06:34 AM By Moderator

Article Id 224812

Technical Tip: 'Clone Reverse' is missing in policy

Description This article describes when 'Clone Reverse' is missing in policy.
Scope FortiOS.
Solution

'Clone reverse' is not always available by design. It is hidden when:

 

  1. Action = 'ipsec'.
  2. NAT is enabled.
  3. Interface 'any' is selected.
  4. VIP is selected for dstaddr/dstaddr6.
  5. Mac address is selected for srcaddr/dstaddr6.


This issue is fixed on FortiOS 7.2.4:
Resolved issues | FortiGate / FortiOS 7.2.4 | Fortinet Document Library
and it is possible to upgrade to that version to have this option back again.
1678
0 Kudos
Submit Article Idea
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.