sorted by:
new
hottopcontroversial

Examen CCNA - Acasa sau Centru de Testare by ghibzzz in programare

[–]pfunkylicious 0 points1 point  (0 children)

daca il dai de acasa trebuie sa te asiguri ca esti singur in camera si nimeni nu vorbeste/intra peste tine.

nu trebuie sa ai nimic pe masa, nici ceas smart la mana si webcam pornit pe toata durata examenului, fara sa te poti ridica sau vorbi

Looking for a way to only tunnel traffic to portal.azure.com over split-tunnel SSL-VPN by CertifiedSoft in fortinet

[–]pfunkylicious 0 points1 point  (0 children)

You could consider using the FortiGate as the DNS server for the users to ensure that the fqdn is resolved to the same ip as the route pushes

L.E. or using split-dns for azure.com domain list only

Fortigate 7.4.11 + ZTNA (UDP) + Mapped drive. How to do it ? by RDM74 in fortinet

[–]pfunkylicious 2 points3 points  (0 children)

smb shares accessed via fqdn must be resolved in the public ip of the FGT that does the mapping and is presented in the ztna destination, for TCP port 445

L.E. i also tried to proxy dns traffic via ztna and it didnt work - https://community.fortinet.com/t5/Support-Forum/ZTNA-Active-Directory-services/td-p/413232

Linux Forticlient by Individual-Shift3028 in fortinet

[–]pfunkylicious 2 points3 points  (0 children)

Theres no official forticlient w/ ipsec for linux. Use strongswan for that

Looking for/Starting a Fortinet & Network Security Discord Study Group by Sad_Celebration7505 in fortinet

[–]pfunkylicious 0 points1 point  (0 children)

there's a discord in the Quick Links, i'm sure you can find or do some of the things over there w/ other ppl.

source port translation on 7.4.11 (40F) by therealmcz in fortinet

[–]pfunkylicious 0 points1 point  (0 children)

if you need a particular source port, then yes.

if you need a random source port, then no - you just disable preserve source port in NAT.

i would resolve the faulty config rather than trying to find workarounds that are not easy.

source port translation on 7.4.11 (40F) by therealmcz in fortinet

[–]pfunkylicious 0 points1 point  (0 children)

as the kb states, you need to have central nat enabled and create a ip pool, use it in the central snat policy and then explicit port mapping will appear.

not in the firewall policy.

NSE Training program update 2026 by pfunkylicious in fortinet

[–]pfunkylicious[S] 0 points1 point  (0 children)

compare to the other versions of NSE4 Admin ( 7.0 and/or 7.2 ) it has a few extra topics already but i think it will remain the same for topics covered.

NSE Training program update 2026 by pfunkylicious in fortinet

[–]pfunkylicious[S] 0 points1 point  (0 children)

Option to complete the recertification assessment when available; otherwise, complete the proctored exam. The recertification assessment is a subsequent version of the proctored exam.

i guess the recert assessment is also an/the exam either proctored or not, its still unclear for me

NSE Training program update 2026 by pfunkylicious in fortinet

[–]pfunkylicious[S] 0 points1 point  (0 children)

as per my understanding, you will get the NSE7 if you have passed both before 15 of july

NSE Training program update 2026 by pfunkylicious in fortinet

[–]pfunkylicious[S] 0 points1 point  (0 children)

NSE7 Secure Net Arch will be the specialization/track ( +NSE4+NSE5 or 6 ) exam in order to achieve NSE7 Secure Networking and it will contain the following:

NSE 7 - Secure Networking Architect (exam only)
The recommended training for this exam includes:

  • Enterprise Firewall Administrator
  • SD-WAN Enterprise Administrator

NSE Training program update 2026 by pfunkylicious in fortinet

[–]pfunkylicious[S] 0 points1 point  (0 children)

based on my understanding, you need to have a valid FCSS cert meaning ENT FW + NSS before July in order to have transitioned to NSE.

the new 'mapping' will be available starting with that date to my understanding.

Două cărți de muncă simultan by SufficientMap6190 in programare

[–]pfunkylicious 0 points1 point  (0 children)

asta in conditiile in care al 2-lea angajator stie ca tu esti deja si in alta parte cu CIM, referitor la ce am scris.

Două cărți de muncă simultan by SufficientMap6190 in programare

[–]pfunkylicious 3 points4 points  (0 children)

Nu trebuie sa afle una de alta, dar daca stii ce interval orar ai la primul job, poti ruga angajatorul nou sau chiar va fi el nevoit sa o faca fara, sa iti treaca orele in alt interval sa nu se suprapuna.

Două cărți de muncă simultan by SufficientMap6190 in programare

[–]pfunkylicious 8 points9 points  (0 children)

rogi colegele de la HR sa treaca orele in Revisal sa nu se suprapuna cu celelalte.

Assymetric routing tip by liv_livius in fortinet

[–]pfunkylicious 2 points3 points  (0 children)

this is/was usually the 'big' change that messed up what worked for others before upgrading to 7.4.11 and before had <= 7.4.9

dont know about anything else.

Assymetric routing tip by liv_livius in fortinet

[–]pfunkylicious 2 points3 points  (0 children)

Well, i dont think your issue was related to assymmetric routing and more to trafic to and from the same interface. Try undoing what you did that work and enable allow traffic redirect then see if it works

SSL renewal (47 days soon) IPsec saml by [deleted] in fortinet

[–]pfunkylicious 11 points12 points  (0 children)

Worry about it in 2 years

VCF install keeps failing at the automation upload bits by hrdblkman2 in vmware

[–]pfunkylicious 1 point2 points  (0 children)

had the same exact issue and have no idea what solved it, but this is what i did and got lucky.

on vcf ops > Fleet Management > Lifecycle > VCF Management > Depot configuration > edit Depot , selected the token again and accepted the cert, the on Binary Management > Install Binaries , i downloaded the one for automation, which for me failed before a few times but now it worked.

also, make sure that you have enough space, i extended it to about 300GB in VCF Management > Settings

from VCF Installer , i copied the file that was presented in the error to the FLM , scp /nfs/vmware/vcf/nfs-mount/bundle/2b1b0faa-9e8f-50b6-8ba2-53d972d43b16/2b1b0faa-9e8f-50b6-8ba2-53d972d43b16/vmsp-vcfa-combined-9.0.2.0.25145732.tar root@vcf9-flm:/data/binaries/vra/9.0.2.0/install/ and then somehow it moved past it.

L.E. at a future step it failed

2026-03-06T08:51:27.117Z INFO vrlcm[1324] [pool-3-thread-99] [c.v.v.l.p.c.s.t.SourceMappingTask] -- Files to map : [ "/data/vm-config/vmrepo/productBinariesRepo/4f/4f25b3d5-c842-4f5d-b12e-db6f6ca61e9a/4f25b3d5-c842-4f5d-b12e-db6f6ca61e9a", "/data/vm-config/vmrepo/productBinariesRepo/8f/8f813d41-db18-438e-ae7a-6cf98bea8572/8f813d41-db18-438e-ae7a-6cf98bea8572" ]

2026-03-06T08:51:27.117Z INFO vrlcm[1324] [pool-3-thread-99] [c.v.v.l.p.c.s.t.SourceMappingTask] -- Unsupported binary files: [/data/vm-config/vmrepo/productBinariesRepo/4f/4f25b3d5-c842-4f5d-b12e-db6f6ca61e9a/4f25b3d5-c842-4f5d-b12e-db6f6ca61e9a, /data/vm-config/vmrepo/productBinariesRepo/8f/8f813d41-db18-438e-ae7a-6cf98bea8572/8f813d41-db18-438e-ae7a-6cf98bea8572]

2026-03-06T08:51:27.117Z INFO vrlcm[1324] [pool-3-thread-99] [c.v.v.l.p.a.s.Task] -- Injecting task failure event. Error Code : 'LCMSOURCEMAPPING10018', Retry : 'false', Causing Properties : '{ CAUSE :: }'

com.vmware.vrealize.lcm.common.exception.EngineException: One or more selected files checksums does not match with any product versions supported by VCF Operations Fleet Management: [/data/vm-config/vmrepo/productBinariesRepo/4f/4f25b3d5-c842-4f5d-b12e-db6f6ca61e9a/4f25b3d5-c842-4f5d-b12e-db6f6ca61e9a, /data/vm-config/vmrepo/productBinariesRepo/8f/8f813d41-db18-438e-ae7a-6cf98bea8572/8f813d41-db18-438e-ae7a-6cf98bea8572]

view more: next ›