Description This article describes the FortiGate behavior on its various
functions when FortiGuard licenses are expired Scope FortiGate Solution
Firewall: Firewall services will be fully functional. High Availability
(HA): HA will be fully functional...
Description For some reason, it may be required to clear the route cache
on FortiGate. This article describes how to flush FortiGate's route
cache. Scope All FortiGate. Solution To clear the route cache, from cli
issue the below command: diag ip rtca...
Description This article describes how to disable daylight saving time
(DST).This feature is enabled by default but in some cases, the end user
may require to disable it for some reasons. Scope FortiOS 7.2.0 or
lower. Solution To disable the DST from...
Description Terminating a dialup user who is already connected to VPN
from VPN access without affecting other users Solution 1) Disable/delete
the required dialup user account, or remove the user account from VPN
access group defined in phase1 settin...
DescriptionWhen session helpers are involved to allow traffic for an
expect session, and traffic logs generated for these sessions references
a policy id does not really indicate a correct policy match.Solution
Once an expect session is created, it a...
Hi, For ddos protection, use ddos policies. Please see
https://docs.fortinet.com/document/fortigate/7.4.3/administration-guide/771644/dos-policy
on setting up different anomalies and thresholds. Best regards, Jin
Hi, One can define a traffic shaper per-ip and and assign it within the
policy e.g config firewall shaper per-ip-shaper edit "limit200" set
max-concurrent-session 200 next end best regards, Jin
Hi Rotta, Please see the article
https://community.fortinet.com/t5/FortiGate/Technical-Tip-SPAN-Port-Mirroring-using-ports-associated-to/ta-p/198276
on configuring span ports by setting up interfaces in soft-switch. Best
regards, Jin