Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [fortinet]

Fortinet is a vendor for security appliances, e.g. the FortiGate firewall.

Fortinet is a vendor for security appliances, mostly known for the FortiGate firewall. But there are some other products like a Database Firewall, Wireless APs, etc.

The firewalls include a lot of features without a mad cisco-like licensing scheme - they're just there and usable: IPSec-VPN, SSL-VPN, IPv6, OSPF, BGP, IS-IS, virtual firewalls on one device ("VDOMs"), HA, WAN-Optimization (using Riverbed technology?), Wireless controller, etc, etc. Subscriptions for Antivirus/IPS patterns and URL-Filter can be added optionally.

81 questions
19
votes
2 answers

Connect to a Fortinet VPN with Ubuntu

I don't know a lot about VPNs but I'd like to connect to a Fortinet VPN with Ubuntu. I can connect on Windows using Forticlient just by entering the policy server (vpn.theserver.com) and then it asks for a user/password. I use IPSec.
Dan
  • 323
  • 1
  • 3
  • 6
13
votes
5 answers

Fortinet SSL VPN Client Setup Without GUI on Linux (centos)

How can I install and setup a fortinet SSL VPN client on a VPS that's running on Centos? I have problem to do it because all guide I have are all using GUI which is not installed on the VPS to save resource. (example:…
Calua
  • 131
  • 1
  • 1
  • 4
10
votes
8 answers

How to get forticlient working in OSX El Capitan

The forticlient VPN software is borked, when using split horizon, since OSX El Capitan. The problem is that DNS requests are sent out on the normal primary interface to the DNS of the VPN tunnel. How do we get the DNS requests to be sent out over…
hbogert
  • 411
  • 1
  • 4
  • 18
5
votes
2 answers

Fortinet SSL VPN Client Setup Without GUI on Linux (Ubuntu)

When I use ./forticlientsslvpn_cli --server 172.17.97.85:10443 --vpnuser forti to connect to the vpn, (using Forticlient SSLVPN 4.4.2329-1 64bit & Forticlient SSLVPN 4.4.2327-2 64bit) it shows STATUS::Connected but I don't get an IP, so it did not…
Marius Pretorius
  • 51
  • 1
  • 1
  • 2
5
votes
7 answers

Fortigate VPN client "Unable to logon to the server. Your username or password may not be properly configured for this connection. (-12)"

We're running a Fortigate 100D, and having some trouble with the SSL VPN via FortiClient. I installed FortiClient on an external Windows 7 PC a few days pack and the SSL VPN connected and worked. I uninstalled it from that PC and installed it on a…
jeremy
  • 855
  • 4
  • 19
  • 31
5
votes
6 answers

Fortinet: Is there any equivalent of the ASA's packet-tracer command?

I would like to know if there is not Fortigates an equivalent of the packet-tracer command that we can find on the ASA. Here is an example of execution for those who don't know it: NAT and pass : lev5505# packet-tracer input inside tcp 192.168.3.20…
Kedare
  • 1,766
  • 4
  • 20
  • 36
4
votes
0 answers

VLAN ID over DHCP for Management Interface of Fortinet FortiAP

When configuring the FortiAP device it's desirable to configure the VLAN ID for the tagged management network. Accordingly to the manual it's possible to do so by "telnetting" to the FortiAP device and setting the variable AP_MGMT_VLAN_ID by…
Vinícius Ferrão
  • 5,400
  • 10
  • 52
  • 91
4
votes
1 answer

Fortigate VPN Routing issue

I have 200B Fortigate unit with 2 internet WAN connections. I also have a remote site which I'm connected to via IPSEC VPN through WAN1. This site has only one GW IP address. I'd also like to setup a VPN ontop of WAN2 with that specific site as it's…
JustAGuy
  • 629
  • 3
  • 18
  • 35
4
votes
3 answers

FortiGate IPsec VPN: Configuring Multiple Phase 2 Connections (Multiple Subnets)

I am trying to make an IPsec connection to a FortiGate router using OpenSwan. The FortiGate sits on two distinct subnets and I need to access both of them. In the FortiGate I have defined one Phase 1 connection and one Phase 2 connection. This…
FixMaker
  • 235
  • 1
  • 3
  • 9
4
votes
2 answers

How to delete IPSEC VPN tunnel from Fortigate 60

I have had a IPSEC connection setup between two firewalls. Now I want to remove the tunnel in my firewall, a "Fortigate 60". There are two phases, "Phase 1" and "Phase 2" for each IPSEC connection. I can delete the "Phase 2" entry by clicking the…
Björn
  • 225
  • 1
  • 3
  • 10
4
votes
1 answer

Fortigate Remote VPN : no matching gateway for new request

I am trying to configure a Fortigate 60C to act as an IPSec endpoint for remote VPN. I configured it like this : SCR-F0-FGT100C-1 # diagnose vpn ike config vd: root/0 name: SCR-REMOTEVPN serial: 7 version: 1 type: dynamic mode: aggressive dpd:…
Kedare
  • 1,766
  • 4
  • 20
  • 36
4
votes
2 answers

IPSec tunnel between FortiGate and iPhone / iOS - Works except for DNS / Wins

I have configured my Fortigate with a new VPN IPSec tunnel to allow the iOS Cisco client to connect. That works fine. I can RDP to my servers, browse to my servers via IP address, etc. But, the iPhone does not resolve my internal IP addresses. I…
user57988
4
votes
2 answers

2 Different Public Address for High Availability

this is my first time asking a question here, and I was wondering is it possible to have two different ISP public IPs connected to a single system for high availability? for example, if our ISP 1 became offline the 2nd ISP will be available, just…
Nät Castaritas
  • 43
  • 2
3
votes
1 answer

Connecting a Nest Camera to Aruba Access Points (APs) backed by a Fortinet Firewall

I am having trouble connecting my Nest cameras to my network. I am running Aruba 300 series Access Points and a Fortinet firewall (which is doing the routing). The Nest cameras never connect, and there is no real way to get input on what is…
jasonmclose
  • 161
  • 5
3
votes
0 answers

Set outgoing interface on Fortigate explicit proxy

I am testing the explicit proxy on a Fortigate 200D firmware 5.4 WAN1 and WAN2 are both members of the wan load balancer interface. I need to set the proxy to use WAN1 but it it is defaulting to WAN2. I've tried adjusting the explicit proxy rules…
Tim Brigham
  • 15,465
  • 7
  • 72
  • 113
1
2 3 4 5 6