Fortigate UTM

Fortigate DC Replication RPC port 135 Session-Helper

Wed, Dec 6, 2017 0 3988 0/5 (0 Vote)

Symptom: DC replication fails between disparate networks. The Fortigate session helper tries to intercept and control this service Solution: con sys session-helper show Look for these other two entries edit 17 set name dcerpc set... Read More

Fortigate Hairpin NAT

Fri, Aug 4, 2017 0 7506 0/5 (0 Vote)

This article describes the configuration needed for Hairpin NAT.Scenario: Internal user ("PC" in the follow diagram) needs to access Server (10.10.10.10) In this scenario, both PC and Server are behind FortiGate and PC wants to connect... Read More

FortiGate MAC host check on SSL VPN

Fri, Aug 31, 2018 0 4552 0/5 (0 Vote)

Technical Note: MAC host check on SSL VPN Description This article describes how to configure a MAC host check on SSL VPN. When a remote client attempts to log in to the portal, the FortiGate unit can be configured to check against the... Read More

Fortigate Phase 2 Keep Alive

Thu, Jul 26, 2018 0 1919 0/5 (0 Vote)

When enabling Keep alive please be aware that this also enables Auto-Negotiate. Whilst both options generally work well together we have seen instances, especially when establishing VPNs to PFsense devices that this can cause random issues.... Read More

Fortigate SSL/TLS Handshake fails

Wed, Dec 6, 2017 0 5736 0/5 (0 Vote)

In some circumstances when using WiFi clients browsing to SSL/TLS server hosts you will see "TLS timeout" or "TLS handshake error" This can be caused by setting the WiFi interface on the fortigate to default (1500) As the WiFi encryption... Read More

Full (Deep) SSL Inspection - Avoid certificate errors

Thu, Jul 26, 2018 0 5073 0/5 (0 Vote)

Preventing certificate warnings Posted on July 26th SHARE THIS POST: In this recipe, you will prevent users from receiving a security certificate warning when your FortiGate applies full SSL inspection to incoming traffic. When... Read More

How to configure DNS based FortiGuard web filtering with FortiOS v5.4

Wed, Aug 2, 2017 0 4590 0/5 (0 Vote)

Products FortiGate v5.4 Description This article provides a sample configuration for DNS based FortiGuard web filtering.In FortiOS v5.2 the DNS web filtering is one option of ‘Web Filter’ profile. In FortiOS v5.4 this feature has... Read More

Technical Note: Custom NTP server configuration

Fri, Aug 11, 2017 NTP, Fortigate 0 2845 0/5 (0 Vote)

Products FortiGate v5.0 FortiGate v5.2 FortiGate v5.4 FortiGate v5.6 Description This article provides an example of the configuration of a custom NTP server via CLI. Solution A custom NTP server can be configured via CLI as follows:... Read More

Technical Note: DNS resolution not working when DNS Server configured to ’Same as Interface IP’

Wed, Aug 9, 2017 Fortigate, DNS settings, DNS Database 0 6893 0/5 (0 Vote)

Technical Note: DNS resolution not working when DNS Server configured to 'Same as Interface IP' Products ProductsFortiGate v5.2 FortiGate v5.4 FortiGate v5.6 Technical Note: DNS resolution not working when DNS Server configured to 'Same as... Read More

Technical Note: Error ’Unable to establish the VPN connection. The VPN server may be unreachable. (-5)’ on FortiClient with SSL VPN

Mon, Aug 7, 2017 0 37150 4.5/5 (8 Votes)

FortiClient FortiGate v5.4 Description This article provides the solution when the error "Unable to establish the VPN connection. The VPN server may be unreachable. (-5)" is obtained in FortiClient trying to connect to the SSL VPN and it is... Read More