Description This article describes how to fix the issue when FortiGate
cannot connect to the EMS cloud using PPPoE internet after the firmware
upgrade to v7.4.1. Scope FortiGate, FortiClient EMS, FortiSASE. Solution
FortiGate connects to the EMS Clou...
Description This article describes how to configure FortiGate to comply
with PCI DSS 3.2. Scope FortiGate v6.0 and above. Solution To configure
FortiGate to comply with PCI DSS 3.2, change the multi-factor
authentication from optional to mandatory. c...
Description This article describes how to fix the GRE traffic stops
working after a firmware upgrade to v7.4.3. Scope FortiGate. Solution
The GRE traffic is working in v7.2.7. Then, it stops working after the
firmware upgrade to v7.4.3. If the collis...
Description This article describes how to fix the ZTNA not working when
using an IP pool. Scope FortiGate. Solution Below is a sample IP pool
configuration for full and Simple ZTNA policy. Full ZTNA policy: config
firewall proxy-policy edit 1 set uui...
Description This article describes why the user is not getting prompted
by authentication when accessing the server via SMB even if the user is
logged out. Scope FortiGate, FortiClient. Solution Diagram: In this
setup, the user is using SAML authenti...
Hi Amr_Ali, You can try the following which was mentioned in this
https://community.fortinet.com/t5/Support-Forum/Fortigate-ZTNA-Tag-added-in-policy-SSLVPN-cannot-access-local/td-p/208658
I have a functioning setup with the following: - one policy fr...
Hi Choll, Good day! Yes, that should work. It was mentioned on this KB
https://community.fortinet.com/t5/FortiGate/Technical-Tip-How-to-add-or-replace-a-unit-in-High-Availability/ta-p/195585
as option 2. Just make sure the secondary FortiGate has the...
Hi Team, Good day! If the traffic over GRE tunnel stops working after
upgrading to 7.4.3, kindly run the command below three times. diag sys
gre list If the collisions of the GRE tunnel are increasing, then it
matches bug 987501. You may check this K...
Hi AEK, Good day! You need to configure the FortiSwitch manually to
migrate Cisco switch config. As FortiConverter doesn't support this
(https://docs.fortinet.com/document/forticonverter-service/23.1.0/online-help/765339/3rd-party-security-vendors-co...
You may use the commands below to remove all the SD-WAN rules via CLI.
config system sdwan config service purge end end Make sure to backup the
FortiGate configuration first before performing this.Thank you.