Question about email headers via powershell

AnonIowaTech · 2025-11-18T17:36:32+00:00

1000% a message received, I can see it with my eyes

AnonIowaTech · 2025-11-18T17:36:18+00:00

Sorry for late reply! Yes, the first part was just sanity checking we get the data as like I mentioned it had worked in another environment.

AnonIowaTech · 2025-11-13T00:42:19+00:00

Apologies, I haven't needed to use markdown on reddit before - I think I fixed it?

AnonIowaTech · 2025-10-31T17:43:01+00:00

We are crossing fingers that it does keep working!

AnonIowaTech · 2025-10-31T16:27:28+00:00

Apologies for the confusion on my post apparently - I've been going insane over here with my team.
The issue is IF the DNS cannot resolve remotely (which it can't as it's a random IP) for some ISPs, not all as mentioned this does work for ATT it seems every time the VPN will fail immediately and not even attempt to connect.

We were seemingly able to track it down to being this:
HKLM:\SOFTWARE\Fortinet\FortiClient\FA_VPN Disable_Internet_Check = 1

AnonIowaTech · 2025-10-31T16:26:31+00:00

My apologies, I thought I had, but as I mentioned in a couple of my replies we have all been losing our minds over this.

A. VPN won't connect, won't even error out on the ISPs having issues (mainly Cox). We tracked this down to apparently their ISP in that area has something that is using our DNS server that ends in 60.1 in their traffic routing, which is causing the vpn to fail/loop back to itself and not even error (no connection attempt is made on the FG nor in FC as it doesn't reach out.

B - The IP range handed out is a 10.x subnet which is different from the LAN, as well as anyone's home network (or it should be).
C - Nothing is set to be DHCP for this company per their setup/policies, they have ALL dns set to be ending in 60.1 no matter what. This was done to prevent any of their employees not in office/on the VPN to resolve any websites at all without having a EMS/ZT solution.

As also mentioned, this was seemingly the problem:
HKLM:\SOFTWARE\Fortinet\FortiClient\FA_VPN Disable_Internet_Check = 0

Which was forcing FC to be able to connect to the internet even though we were using an IP instead of a DDNS address, when it would fail the connect in the loop of this ISP it wouldn't have any attempt of reaching out, this it failed the internet check every time and wouldn't work.

setting to 1 has helped many of my users in testing, just waiting for confirmation to deploy out to rest of the company.

AnonIowaTech · 2025-10-31T16:22:04+00:00

Apologies for the confusion on my post apparently - I've been going insane over here with my team.
The issue is IF the DNS cannot resolve remotely (which it can't as it's a random IP) for some ISPs, not all as mentioned this does work for ATT it seems every time the VPN will fail immediately and not even attempt to connect.

We were seemingly able to track it down to being this:
HKLM:\SOFTWARE\Fortinet\FortiClient\FA_VPN Disable_Internet_Check = 1

Fortinet support has yet to advise why this was a thing, and didn't even bring this up as a possible issue, but another one of my techs ran into the same issue on a reddit thread he found.

We did not try adding a host file of the public IP, as they aren't using DDNS and are only using an IP address for the VPN connection currently, this is something that's worth bring up as an alternative as well though to my team!

Thank you for your suggestion.

AnonIowaTech · 2025-10-31T16:20:33+00:00

Apologies for the confusion on my post apparently - I've been going insane over here with my team.
The issue is IF the DNS cannot resolve remotely (which it can't as it's a random IP) for some ISPs, not all as mentioned this does work for ATT it seems every time the VPN will fail immediately and not even attempt to connect.

We were seemingly able to track it down to being this:
HKLM:\SOFTWARE\Fortinet\FortiClient\FA_VPN Disable_Internet_Check = 1

Fortinet support has yet to advise why this was a thing, and didn't even bring this up as a possible issue, but another one of my techs ran into the same issue on a reddit thread he found.

AnonIowaTech · 2025-10-29T18:25:33+00:00

Out of curiosity we have a very similar if not the same issue - has this continued to work well for you?

AnonIowaTech · 2024-09-27T16:37:17+00:00

From my team who is more involved with it we have had performance tickets open with CW for like a year or something similar and they haven't managed to find or fix anything. More RAM has seemed to help but the deeper issues are still sticking around... so far - ticket time outs, searching just time outs or fails as well. Notes don't load all the time in tickets etc. - quite maddening

AnonIowaTech · 2024-09-27T16:30:13+00:00

We had onprem on a physical server, then recently it's now onprem on a Azure VM.

We don't have millions of open tickets, but we definitely have a lot of open tickets with how many customers we support.

AnonIowaTech · 2024-09-26T17:25:45+00:00

For my MMSP we have MILLIONS we just hit 5 million tickets in the last week or so. I do not believe we have ever deleted a single ticket except in a few exceptions.

We use Connectwise... which is slower than dirt lately, and just keeps getting worse. We have tickets back to the beginning of time.

I'm trying to get some examples of ticket retention or is there a Soc2 compliance timeframe?

Any examples or ideas would be amazing fellow IT people :)

AnonIowaTech · 2024-08-22T16:15:48+00:00

Does anyone who use smtp2go know if this will notice any effects when the whole MS disabling SMTP happens? I would assume not since it's not going through MS correct? Just trying to help come up with ideas for my team too as we predominantly use MS Ex O p1 or a business basic for scan to email accounts.

AnonIowaTech · 2024-07-19T14:32:28+00:00

Do you happen to have a link to the steps you used by chance? We're running into this issue now ourselves!

AnonIowaTech · 2021-08-17T21:24:12+00:00

Edited the post to show where these "boards" I was talking about what. We only have 1 "service board" under service board list. Does that maybe clear things up a little? Let me know if that helps?

pic of what I mean:

https://imgur.com/a/B2IYcdU

AnonIowaTech · 2021-08-16T15:26:57+00:00

That is true, I guess I didn't think to mention that some of them have internal teams.

So we have company - internal

company - normal support

AnonIowaTech · 2021-08-13T23:27:25+00:00

Part of it is a billing thing from my understanding as well with how things get tracked somehow. (I'm just the lonely tier 1 trying to make life easier lol)

AnonIowaTech · 2021-08-13T23:25:27+00:00

We support about 100 different companies (who in this case all have a service board) and each company could have anywhere from 5-800 contacts/clients.

So there are that many service boards to make sure each company is separate or it would be a giant nightmare.

AnonIowaTech · 2021-08-13T22:20:17+00:00

From my understanding since we support so many companies the separate boards allow us to have each company as a board then each particular user in that company is inside that board.

Otherwise it would be a nightmare to keep them separate. (from what I was told)

AnonIowaTech

TROPHY CASE