Re: Problem using Application Control in FortiProx...

v_ceban · 03-04-2024

Please disable add-route on the ipsec phase-1 interface on all involved parts.config vpn ipsec phase1-interface edit set add-route disable next endAlso, make sure the IP addresses and subnet is correctly configured on tunnel interfaces.On HUB the re...

v_ceban · 09-16-2023

Hello Benny, For FortiClient connections, you can use the peer ID. This feature is available on both FGT and FortiClient EMS, and it will allow FortiClient to connect to the correct dial-up tunnel. https://community.fortinet.com/t5/FortiGate/Technica...

v_ceban · 09-14-2023

If the customer is not using Active Directory. There won't be much difference, you move it to FGT.

v_ceban · 09-14-2023

Hi, I would suggest to try 7.2.1 FCT and make sure you provide full-disk access: https://docs.fortinet.com/document/forticlient/7.2.1/macos-release-notes/223986/special-noticesThere are some BUGs on 7.0.9 Free FCT that may cause this issue: https://d...

v_ceban · 09-14-2023

Hi, There is another solution available on VMs. You can still use FGCP HA cluster but you can exclude some parts of the config from sync. On VMs the following part of the config can be excluded from HA Sync: # config system vdom-exception edit 1 set ...

User Statistics

User Activity

Re: Fortigate SD-WAN Hub cannot connect to Spokes

Re: IPsec VPNs

Re: DNS - Via Windows Sserver vs. FortiGate Firewall

Re: FORTICLIENT VPN: Connecting

Re: ExpressRoute v2

Re: Problem using Application Control in FortiProx...

Re: IPSEC vpn with local gateway option

Re: IPSEC vpn with local gateway option

KCS