Useful commands to enable debug logging to console to troubleshoot Site to Site VPN issue in FortiGate firewall
FortiGate
FortiGate CLI Commands for Troubleshooting
FortiGate CLI commands for basic configuration and troubleshooting of fortigate appliance.
FortiGate Threat Feeds - Difference Between FortiGuard Category and IP Address
Security Fabric of FortiGate is the most promising feature in the latest FortiOS version. This feature performs dynamic security updates and automates several repeated tasks of firewall administrators, thus eliminates need of manual intervention in several aspects. In this article, we mention about two features of Fabric Connector - FortiGuard Continue Reading
Fortigate IP Address Feed
Configure Fortigate IP Address Feed After spending several days, I figured out how to configure IP address feed on Fortigate firewall. This is one of demanding feature requested by most Fortigate administrators to ease their job. You can also download our free tool - Firewall Feed to easily manage text file Continue Reading
Setup Forticlient Remote Access VPN in FortiGate Firewall
Please read carefully - All FortiGate appliances are bundled with 10 free license of managed Forticlient that performs 'Compliance Check'. If you go beyond 10, then additional license must be purchased. However, if you are using Forticlient for the purpose of VPN alone (without Compliance Check), then you don't require additional Continue Reading
Configure Fortigate Management IP address in the same subnet of other interface
In a branch office where there are few users with just one IP subnet used , I need to configure Fortigate Management interface in the same subnet of LAN. By default, FortiGate doesn't permit such configurations and if you still try to configure, you get an error "Conflicts with LAN subnet". Continue Reading
FortiGate Block Geographic Regions using CLI Commands
If your website is targeted for customers in India, why do you need to allow traffic from other countries, as a security measure you must consider blocking traffic from unwanted regions. Sometimes you may also wanted to block from known attacking countries such as China or Russia. You can achieve Continue Reading
One to One Static NAT Configuration in FortiGate
Helpful guide to setup one-to-one Static NAT in FortiGate firewall so all inbound and outbound traffic of the server (192.168.1.2) communicates via a specific Public IP address (180.151.48.34). Inbound Static NAT Navigate to 'Virtual IP' menu under 'Policy & Objects' and specify Public (External) and Private (Mapped) IP address details Continue Reading
How to upgrade FSSO Agent
This article applies to all versions of FSSO. Step 1: Identify installed FSSO version. Navigate to C:\Program Files (x86)\Fortinet\FSAE, right click on FSAEConfig.exe properties to find out the version. My FortiGate is running 5.6.0 version and FSSO installed version is 5.0.0254. Step 2: Identify FSSO version supported by your FortiOS version. You Continue Reading
How to restore FortiGate Web Admin GUI Access
Have you lost access to your Fortigate GUI and looking for solution to restore the access? Here are the possible causes for GUI to become inaccessible. Before we continue further, I assume that you have access to Fortigate either via Console or SSH to perform these steps. 1. Enable GUI Continue Reading