Create PolicyMake sure the Subnet is in the Split Tunneling
Tag: Fortinet
Office 365 Failed : 550 5.4.316 Message expired, connection refused(Socket error code 10061)
Recently a few users had the following bounce backs from Office 365 to an On-Prem Mailserver with the error‘550 5.4.316 Message expired, connection refused(Socket error code 10061)Checking […]
Fortigate Setup Best Practice
config system global set admin-telnet disableend V7 – Set Memory HA Failover – New Features | FortiGate / FortiOS 7.0.0 | Fortinet Documentation Library Add Interface Bandwidth […]
IPSEC Fortigate/Fortinet VPN Config
USE PFS for Phase 2 Auto Neg 2) Add Static Routes on both sides to each other’s Subnets via the VPN Connection Interface created in Step […]
An application was detected, orginating from your system. Please contact the system administrator.
This is because something has triggered IPS A quick fix to temp disable Changed from quarantine to block?Then in quarantine monitor, remove the local 192.168 IP’s?Investigate the blocks in […]
How to Monitor Fortigate/Fortinet Routers via SNMP in Ncentral
On the Fortigate On the LAN Interface ( Gateway Address ) Enable SNMP Enable SNMP with your chosen Community Name Add the Host IP of the local N-able Agent/Server Polling […]
How to Test IP Sec VPN Status on Fortigate HA Secondary Unit
To access the Secondary unit without changing HA Primary unit , which I would advise against if you are not sure of the VPN status run the followingexecute […]
Wireless Guess Wireless Fortigate and Netgear
On the Fortigate , Create a new Interface and assign it to the Uplink of your internet or DMZ with a Vlan ID and Enable DHCPCreate a […]
How to add a routable subnet to a Fortigate VPN connection
When a user VPN into a Fortigate Router , make sure they can access all Subnet available to the router not just the local one :Added security […]
Whitelist Domain marked as “newly observed domain” fortigate
If a website a being blocked from being viewed due to Fortinet web filter with the Category “newly observed domain” This is due to URLs whose domain name is […]