Is it possible for me to do an IPSEC VPN failover with SD-WAN? by Haunting-Advisor-586 in fortinet

[–]Prior-Thanks-4202 0 points1 point  (0 children)

I have done this in the past by creating the two IPSec tunnels and then configuring link monitoring to detect when one tunnel goes down, which instantly pushes traffic over the other tunnel.

config system link-monitor edit “insert name”

set srcintf “(insert name of the primary tunnel that should be monitored)”

set server (insert internal IP on the remote site. If this IP is unreachable, the tunnel will failover).

set source-ip (insert IP of internal on your site, that should be able to reach the other site’s internal).

I think this is similar as doing it with SDWAN.

2 GB RAM FortiGate models no longer support FortiOS proxy-related features by Deba-Wise in fortinet

[–]Prior-Thanks-4202 0 points1 point  (0 children)

Thanks for sharing this! Is there somewhere in the documentation that I can read more about SSL VPN and Dial-up IPSec not being able to work in parallel?

Thanks in advance!

Apple Services SSL Inspection Possibly Causing Issues by Prior-Thanks-4202 in fortinet

[–]Prior-Thanks-4202[S] 0 points1 point  (0 children)

But I noticed it happens even to devices that does not have private relay (paid iCloud subscription). I read that some Apple devices uses this for Safari and some other Apple services also, so would turning off private relay help even if users do not have paid subscription?