We have recently seen an accumulation of problems with IPSec VPN tunnels. The problem was recognized by Swisscom and fixed with a new firmware. Further information can be found in the release notes (on this page). The firmware version from which the problem was fixed is: 9.52.12 B16++ (June 2023).
If you want to use custom languages on FortiGate generated websites, like the SSL VPN page, you can add additional self-made translation files to the FortiGate. Note at the beginning: This is a new feature under FortiOS 6.4.5 . It was available before but was not working. First you need…
After Fortigate upgrade v6.4 > v7.0.1 (or later) the S2S-dialup VPNs did not work anymore. Tunnel negotiation is successful and phase 1 and 2 get up. Traffic from spoke is routed into the tunnel, but is seems that the traffic is not received by the hub.
Since last week, we observed a lot of failed SSL-VPN login events on various FortiGate setups. (Edit: That was back in August of 2021 and the big “scanning” ended around two weeks after it has started. But messages are still shown from time to time, since scanning is going on…
Update, Nov 2020: More than a year after Fortinet described this SSLVPN vulnerability, it gets new attention. A few days ago a list of IPs and domain names of vulnerable Fortigates was published. This list is dated November 2019 and one can only hope that many of these systems have…
Based on two recent support cases regarding the IPsec performance between an OnPrem and Azure FortiGate, we did some testing using the latest FortiOS 6.4.1. We’ve created a basic IPsec tunnel using the wizard, deployed an Ubuntu machine at both sites and used iPerf3 to do some speed testing. The…
Here you will find the most important support links of our vendors regarding Home-/Remote-Office, Dialup VPNs and MultiFactor Authentication:
Da die Server von www.forticlient.com gut ausgelastet waren zu beginn der Homeoffice-Zeit wegen COVID-19, haben wir unseren Resellern hier während dieser Zeit den Download des FortiClients über unsere Server ermöglicht. Dies ist unterdessen nicht mehr notwendig und daher haben wir die Links wieder entfernt. Wir Verweisen auf www.forticlient.com. Fortinet hat…
Mit dem Release von FortiClient 6.2 wurde der bisherige Full Featured FortiClient lizenzpflichtig und setzt einen FortiClient EMS Server voraus. Im Gegenzug hat Fortinet einen separaten VPN-only Client veröffentlicht. Fortinet beschreibt den FortiClient VPN folgendermassen: For FortiGate administrators, a free version of FortiClient VPN is available which supports basic IPsec…
Due to several known issues, we did not recommend the use of FortiOS 6.2 in productive environments for the first couple of months. As per FortiOS 6.2.5, we noticed that most of the issues have been resolved. Please have a look into our FortiOS upgrade guide for the upgrade procedure.
Sind Sie interessiert, den BOLL Blog als RSS Feed zu abonnieren?