when enabling DDOS, UTM or traffic over VPN. I believe this applies to other video solutions like zoom.Workarounds below:https://kb.fortinet.com/kb/documentLink.do?externalID=FD50610For any voice-type traffic you should not use UTM […]
Tag: Fortigate
Connections logout after 8 hours ( 480 Minutes ) – the connection has been disconnected because the session timeout limit
Fortinet By default a SSL VPN connection will logout after 8 hours. FixTerminal Server : Check Radius ( NPS Server )
Fortinet\Fortigate – SSL VPN Clients access each other ( Client to Client Communication )
Create PolicyMake sure the Subnet is in the Split Tunneling
delete fortigate hardware switch
By default Fortigates come with all their LAN interfaces on a hardware switch. You might want to change this so you can use these as seperate interfacesDelete […]
Office 365 Failed : 550 5.4.316 Message expired, connection refused(Socket error code 10061)
Recently a few users had the following bounce backs from Office 365 to an On-Prem Mailserver with the error‘550 5.4.316 Message expired, connection refused(Socket error code 10061)Checking […]
Fortigate Setup Best Practice
Fortigate best practices baseline — Plasmatic Sun config system global set admin-telnet disableend adding extended-log for traffic logs. This will enable traffic logs for errors such as […]
IPSEC Fortigate/Fortinet VPN Config
USE PFS for Phase 2 Auto Neg 2) Add Static Routes on both sides to each other’s Subnets via the VPN Connection Interface created in Step […]
An application was detected, orginating from your system. Please contact the system administrator.
This is because something has triggered IPS A quick fix to temp disable Changed from quarantine to block?Then in quarantine monitor, remove the local 192.168 IP’s?Investigate the blocks in […]
How to Monitor Fortigate/Fortinet Routers via SNMP in Ncentral
On the Fortigate On the LAN Interface ( Gateway Address ) Enable SNMP Enable SNMP with your chosen Community Name Add the Host IP of the local N-able Agent/Server Polling […]
How to Test IP Sec VPN Status on Fortigate HA Secondary Unit
To access the Secondary unit without changing HA Primary unit , which I would advise against if you are not sure of the VPN status run the followingexecute […]
How to setup Voice Vlan Trunk between Fortigate and HP Aruba Switch
FortigateCreate a new Interface under a port or an existing virtual switch where the Aruba switch uplinks to Enter Vlan ID and Interface IP Next you will need to setup […]
Wireless Guess Wireless Fortigate and Netgear
On the Fortigate , Create a new Interface and assign it to the Uplink of your internet or DMZ with a Vlan ID and Enable DHCPCreate a […]