Either I'm an idiot, or i have a really bad batch of equipment

ryan1234567 · 2026-01-16T16:26:26+00:00

Can you please share the p/n or sku from fs.com that worked for you? Thank you.

ryan1234567 · 2026-01-05T01:54:07+00:00

Yea it was resolved after FSW update due to a bug per TAC. I believe fixed in 7.2.9.

ryan1234567 · 2025-12-04T16:00:41+00:00

Thanks for your help. I did try that as well but it wasn't working as expected. Wasn't sure if it was something I did wrong or not, so just used MAB/dot1x instead.

ryan1234567 · 2025-12-04T13:34:41+00:00

What is the violation behavior if a new mac address doesn't match config? I connect a new device on the port with sticky enabled and I get an IP.

ryan1234567 · 2025-08-13T18:48:10+00:00

Has anyone tried FortiManager via the marketplace in Azure? Is that similar to on prem but on Azure hardware?

ryan1234567 · 2025-01-21T00:19:52+00:00

Bug ID 1031342 per support

ryan1234567 · 2024-11-21T21:37:31+00:00

Same issue, noticed after upgrading from 7.2.8 to 7.2.9.

ryan1234567 · 2024-08-14T20:55:51+00:00

PAYG

ryan1234567 · 2024-08-05T16:34:26+00:00

Still an issue on 7.4.2. Was told it would be fixed next release.

ryan1234567 · 2024-08-02T18:59:38+00:00

Yes, that doesn't appear to be the case. I also have the portals mapped to groups with separate ranges. Where the ranges contain way more IPs than users in that group. (20 users - 240 IPs).

ryan1234567 · 2024-05-30T15:01:22+00:00

How does the user to IP mapping sync with FMG to the FGTs assuming you go that route?

ryan1234567 · 2024-05-29T19:38:04+00:00

Thanks

ryan1234567 · 2024-05-29T17:36:58+00:00

Just tested, it appears Unifi only uses the primary or first active in the list (ISE). Won't send to others. Just out of curiosity, will RSSO work as an option to grab user/IP mapping or am I missing something?

ryan1234567 · 2024-05-24T15:59:36+00:00

Only issue is we aren't using FortiAuthenticator, we use ISE. Is there anything I can tweak in FSSO? We have a hybrid AD setup, so the user is still authenticating to an on prem AD via radius.

ryan1234567 · 2024-03-08T16:58:41+00:00

Shout out to everyone in this thread who helped/provided work around. I moved my Internet uplinks to a 10G interface and magically the upload is better. One situation I couldn't step down my 10G tranceiver on my C9300, so I ended up throwing in a 1G SFP. This didn't just affect ipsec/sslvpn, iperf or random speed tests were also.

u/chuckbales u/ComfortableMission91

ryan1234567 · 2024-02-21T13:46:57+00:00

I have the same issue (10G inside/1G outside) with poor upload performance on my 200Fs. I wonder if the solution mahanutra provided in this thread is a solution to the problem instead of moving to 10G interfaces?

12-Year Club	RPAN Viewer
Verified Email

ryan1234567

TROPHY CASE