Technical Tip: ERR_SSL_PROTOCOL_ERROR when using F...

pjang · 05-14-2025

Description This article discusses the tamper-evident seals required on the FortiGate as part of FIPS 140-2 and 140-3 Security Level 2 requirements. Scope FortiGate, FIPS. Solution As per the FIPS 140-2/140-3 'Physical Security' requirements section,...

pjang · 04-17-2025

Description This article describes a known issue that occurs with hardware-offloading when IPsec VPN tunnels are terminated/listening on NPU VDOM links (also known as npu_vlinks). This issue will also occur if the IPsec tunnel is listening on a VLAN ...

pjang · 04-15-2025

Description This article describes an expected behavior with the VMware ESXi External Fabric Connector on the FortiGate where it retrieves some (but not all) networks from VMware vSphere due to naming restrictions. Scope FortiGate. Solution As a prim...

pjang · 04-06-2025

Description This article contains a list of resources related to Simple Network Management Protocol (SNMP) on the FortiGate. This includes: Guides for troubleshooting SNMP communication issues. Articles describing the various SNMP Object Identifiers ...

pjang · 04-06-2025

Description This article describes a known-behavior that can occur when a FortiGate is operating in NGFW policy-mode VDOM and has a mixture of Security Policies that are filtered with both Application signatures and URL Categories. The following are ...

pjang · 03-13-2025

Piggybacking on what @cyberadius suggested above, we have the following Community KB articles that cover similar info (I'll leave them here for future reference): Technical Tip: How to prevent the SSL VPN web login portal from displaying when SSL VPN...

pjang · 11-04-2024

Hi @SajjadAli-1986, Just to let you know, this is the Article Ideas Submission queue, which is used to submit new KB article ideas. For technical assistance, please either post to the Fortinet Support Forum or open a ticket with Fortinet TAC Support....

pjang · 01-15-2024

Hi Faiza_Emam_Delhi, can you clarify where (FortiGate, FortiSwitch directly, FortiManager, etc.) and on what firmware you were able to perform these steps? I checked on FortiOS 6.4, 7.0, 7.2, and 7.4, and none of them have the capability that you are...

pjang · 08-11-2022

I recommend checking out these Community KB articles for SSL-VPN and IPsec:https://community.fortinet.com/t5/FortiGate/Technical-Tip-Enabling-split-tunnel-feature-for-SSL-VPN/ta-p/198108https://community.fortinet.com/t5/FortiGate/Technical-Tip-Enable...

pjang · 04-22-2022

Unless I'm missing something, it looks to me like Source NAT isn't turned on for Policy 15, the SSL-VPN to Internet policy.You're using a full-tunnel SSL-VPN (set split-tunneling disable), so all traffic is shuttled over the VPN in this case, but you...

User Statistics

User Activity

Technical Tip: FIPS 140-2 Tamper Evident Seals for the FortiGate

Technical Tip: FortiGate NPU does not hardware-offload IPsec tunnels terminated on NPU VDOM links (Known Issue)

Technical Tip: VMware ESXi External Connector on FortiGate cannot retrieve networks with special characters in their names

Technical Tip: FortiGate SNMP Resource List

Troubleshooting Tip: NGFW Security Policies can generate Web Rating error logs if Application policy is placed above URL Category Policy (Known Behavior)

Re: Disable SSLVPN webportal page

Re: Fortigate 200F Firmware recovery - Status changed to: Declined

Re: How to export a fortiswitch configuration in table format (expecially port assignments)?

Re: Split Tunnel

Re: SSLVPN no outbound access

Technical Tip: ERR_SSL_PROTOCOL_ERROR when using F...

Technical Tip: Assigning Priority to SD WAN Member...

Technical Tip: Configuring SSL-VPN to allow tunnel...

Technical Tip: FortiGate Cloud Remote Access funct...

Technical Tip: Understanding the link-down-failove...

Re: SSLVPN no outbound access

KCS

User Statistics

User Activity

You are leaving our website