Description This article describes how to configure FortiGate to
establish an eBGP or iBGP using a Loopback interface. Scope FortiGate
v7.0 or higher. Solution Diagram: eBGP between 2 FortiGates. One of them
is used as a Loopback address: The eBGP co...
Description This article describes how to perform an automatic backup of
a FortiGate using cronjob on a Linux host. Scope FortiGate. Solution
Generate SSH keys on the Linux host and configure a login without a
password between FortiGate and the Linux...
Description This article describes how to configure the destination port
for the Central SNAT table. Scope 7.4.x onwards. Solution Central NAT is
a very useful feature on FortiGate on which it can be defined how to
control the NAT. The Central NAT ta...
Description This article describes how to generate ssh keys on the Linux
SSH host and use it for public-private key authentication to the
FortiGate unit. Scope FortiOS 6.4, 7.0.x, 7.2.x. Solution 1) Generate
the public-private key pair on the Linux h...
Description This article describes how to automatically WAD workers
using the built-in mechanism. Scope FortiGate v7.2.4 and onward.
Solution FortiOS version 7.2.4 has introduced a new feature that gives
the possibility to configure auto-restart of w...
Hello RolandBaumgaerhner72, If you want to combine Policy routes +
SD-WAN , keep in mind that Fortigate fist process the policy routes and
if there is no match then checks the SD-WAN . The KB bellow provides a
useful information for the behaviour of ...
Hello Thoubik , As far as i understand you have topology like this :
VLAN100<-->Fortigate<-->VLAN200 Withoyt asymetric routing you can route
the traffic from VLAN100 to VLAN200 or vica versa , you just need to
configure proper FW rules and adjust the...
Hello Mirza_Asad2723, For option No1, '4 0 l' , 4 means "Print header of
the packet + interface name", 0 means unlimited packet capture, l means
local FW time as a timestamp . For Option No2, proto 1 means, filter by
protocol No1 which is ICMP(ping),...
Hello Chris, I hope you are doing well. As far as i understand you have
few VMs connected to your device, to which interface they are connected
to ? What is the IP address and interface config for that interface ?
Please run the debug bellow and gene...
Hello, Using the commands above Fortigate will generate 50 ICMP messages
with source IP 59.37.244.221 to destination IP 205.89.157.8. If you want
to track the ICMP you can open a new SSH session and run the following
commands : Option No1 : diagnose ...