Hi FGT adminsI have one FGT 101F with FOS 7.2.10.I found the following
config error.FGT # get system startup-error-log >>> "set"
"gui-endpoint-control-advanced" "enable" @ root.system.settings:command
parse error (error -61)The error is "probably" du...
Hello FAC adminsI'm working on FAC 6.6.2.I noticed that FAC's local LDAP
can be used only for local user DB.So far I mainly used it as RADIUS
server (Corp LDAP as back-end) in order to add MFA.But now following our
new requirement I didn't find a way...
Hi EMS/FGT adminsWhen creating ZTNA proxy rule (in Policy & Object >
Proxy Policy) for clients that are off-fabric, is there anything valid
that we can put in "Source" field other than "all"?Trying to put the
public source address of the client, or e...
Hi FAP & FSW adminsIf I'm not misunderstanding, since managed FAP's and
FSW's configs are pushed from FGT, then it should not be required to
follow upgrade paths for FAP and FSW. Is this correct?
Hi FML adminsOn my new FML 7.6.0 I cant get CLI working from the
GUI.Each tim I try run it I get this message:I try Ctrl-C, Enter,
right-click, Ctrl-d or whatever but doesn't change anything.Updated to
7.6.1 but the issue still the same.While ssh con...
Probably the error message is related to the issue.All I can suggest is
to check MTU is the same along the path (switch, AP if used, clients,
FAC, VMware, ...).Hope some more experienced community members can help
further, like @Toshi_Esumi & @ebilca...
Once you connect to VPN, you need to check on the client hosts if the
routing (netstat -rn) and DNS are as expected.In your case you need
split tunnel and split DNS (or no DNS injected by VPN). In other words
in your routing table there should be no ...
Hi AndreaThese two articles should
help.https://community.fortinet.com/t5/FortiGate/Technical-Tip-IPsec-dial-up-full-tunnel-with-FortiClient/ta-p/189452https://community.fortinet.com/t5/FortiClient/Technical-Tip-How-to-configure-IPsec-VPN-Tunnel-usin...
