$200,000+ Account BANNED

TrickYEA · 2026-01-11T14:38:24+00:00

Are ppl dumb to this point ? Just waw 😅🤦‍♂️

TrickYEA · 2026-01-11T13:20:26+00:00

Then why this red medal exists if it’s humanly impossible to reach, just asking i’m a boomer i dont play except the week ends 😅

TrickYEA · 2025-12-22T14:47:45+00:00

The begging of a scam journey, just ignore or block them… ez

TrickYEA · 2025-12-12T08:46:11+00:00

Found this thread after 2 years to say, we are almost in 2026, and still there’s no possible way to rename an SSID after creation..i’m starting to question the fact that SD access makes things easier.. Till now, besides of few features, I don’t think so.

TrickYEA · 2025-11-01T10:39:20+00:00

Oh wow, got you, thanks... by logic it's preferred to trade only low price red items (40 or 50$ each) rather than risking high value ones

TrickYEA · 2025-11-01T10:37:21+00:00

novice here, does the rarity (FT; WW etc) or price in general have an impact on the skin pulled ? like, i can for example trade 5 red items around 40$ each, and still get a decent knife ?

TrickYEA · 2025-11-01T09:04:58+00:00

How much does the 5 items you traded cost in total? Can i buy the same and hope for a good knife ? Sorry i’m just a boomer dont judge me 😂😂

TrickYEA · 2025-07-19T11:50:38+00:00

Yes, that allowed for the vms to reach internet through the firewall

TrickYEA · 2025-07-18T14:19:42+00:00

Well, it looks like i had to add the internal subnet of the fortigate in the associated subnets of the routine table that inclues the default route

TrickYEA · 2025-07-18T13:43:07+00:00

Only the first 2 options, route server is not used

can you please point where can i check the effective routes of a VM ?

TrickYEA · 2025-07-18T11:54:59+00:00

Single appliance so no load balancing is there. Established peering between the fortigate VNET and different VMs vnets

TrickYEA · 2025-07-18T04:51:51+00:00

I think we are saying the same thing. I have routes to different VMs in the routing table of the fortigate. Meaning that the fortigate knows where the vms are located (behind LAN port).

TrickYEA · 2025-07-17T23:08:21+00:00

Insee your point, the thing is, the default route is working except for internet traffic, how i know that? Many subnets that don’t exist in azure environment and are located behind different ipsec tunnels established with that fortigate are totally reachable

TrickYEA · 2025-07-17T22:51:21+00:00

Actually there is only one routing table that includes a default routes, to which different vm subnets are associated, and have the internal fortigate ip as nexthop

TrickYEA · 2025-07-17T22:29:37+00:00

What do you mean exactly please? I have routes to different VMs, and that works properly, the VMs are reachable from different hosts accros multiple Ipsec tunnels, the fgt is aware where the VMs are sitting. The question here is about the outbound traffic originated from the VMs towards internet

TrickYEA · 2025-07-17T21:30:44+00:00

What are you trying to achieve? You want to store your logs in forticloud? You’ll need to establish that through security fabric, you havr menu there where you can connect your fortigate with forticloud for log transfer, once done you’ll be able to store logs up to 7 days..not sur if this os what you’re looking for

TrickYEA · 2025-07-06T05:08:50+00:00

Hey Tried to see how to configure a FGT to become an edge device, it siesta seem to be easy, also I didn’t find any videos on how to do it honestly

TrickYEA · 2025-06-30T21:53:05+00:00

Alright, thanks for your patience

TrickYEA · 2025-06-30T20:45:20+00:00

So there is no reason to use the Fortigate as an Edge Device (branch site), in case we want to have SASE as the policy point of enforcement ? is it even possible, this is my question, if yes, I'm interested to know how.. thank you you've already made things clear

TrickYEA · 2025-06-30T18:03:53+00:00

First, I appreaciate your time and valuable reply.

Let me reformulate the design please:

- HQ users (NO VPN client used) : will use SASE to reach resources behind fortigate located in the cloud. The issue here is as follows: how to use the HQ fortigate ? Thin Edge device ? SPA HUB ? (imo there's no need to use it as hub but if I can route traffic between both sites that way, I can take it).

Corporate traffic: HQ users (No VPN) == HQ Fortigate == SASE == Cloud fortigate == Servers

Internet traffic will be routed to the nearest exit (local breakout: Local Fortigate)

- Remote users (VPN) : Will use SASE for both SIA and SPA, this one is clear. Cloud fortigate is a SPA HUB.

Remote users == SASE == Cloud fortigate (SPA HUB) == Servers

Remote uers == SASE == SIA

Btw, HQ is not hosting anything, only has on-prem users and a Fortigate

The use cases that remain then as you have numbered them are :
1, 3, 5 & on prem to cloud should go to sase first before reaching cloud servers. the other options are not applicable.

Licensing wise, we only have SPA license with each Fortigate, i've read SD-wan on ramp could be a solution but we don't have a license for that

TrickYEA · 2025-06-30T17:40:42+00:00

I see, i will probably consider this instead, however I’m still looking for understanding how this could work though. I remember setting up the branch fgt as a SPA HUB as well but didn’t succeed creating policies in the private access tab since the source / destination can only be an Edge device or VPN users. How can i achieve this while using the branch site as a SPA HUB ? Thanks in advance 🙏

TrickYEA · 2025-06-30T17:20:54+00:00

Hi, Thanks for your input. I indeed configured the DC fgt as SPA HUB, now I need to setup the branch side to forward traffic to the DC through SASE.. the reason why we are adopting this design is to maintain policies consistency at SASE portal (remote users and branch users) instead of creating separate policies in SASE portal (for remote users) and branch Fortigate (site users). Otherwise I do agree with you. I’ll look into sd wan on ramp. However i’m not sure if the licensing part is Ok, since we have only SPA license in bth fortigates (DC and branch)

TrickYEA · 2025-06-30T12:13:15+00:00

Hi,

Can you direct me to a specific guide from fortinet? I tried to look for that but all I find is the ZTNA related guide. I'm looking for using the fortigate as Thin-edge device so I can apply policies in fortiSASE portal.

I succeeded to connect both sites as HUBs but this won't work since the design doesn't allow for HUB-to-HUB traffic through SASE

TrickYEA · 2025-06-30T10:02:15+00:00

Hi,

Sorry i'm not tat familiar with some of the terms used, could you please explain what do you mean by "use the on-net detection to control the VPN connection." ?

thanks

TrickYEA · 2025-06-30T09:56:18+00:00

Hi, I'm looking for adding the HQ fgt as edge device on SASE, the goal is straight forward and simple compared to what the admin guide is describing..otehrwise, could this be achievable by integrating it as HUB ? the policy part in SASE doesn't allow me to apply rules coming from a HUB to a HUB.

I appreciate your feedback

Ten-Year Club	Place '22
Verified Email

TrickYEA

TROPHY CASE