# ![@seaghank Avatar](https://lunarcrush.com/gi/w:26/cr:reddit::t2_5jghtu8q.png) @seaghank seaghank

seaghank posts on Reddit about fortinet, filter, how do, hub the most. They currently have [--] followers and [--] posts still getting attention that total [--] engagements in the last [--] hours.

### Engagements: [--] [#](/creator/reddit::t2_5jghtu8q/interactions)
![Engagements Line Chart](https://lunarcrush.com/gi/w:600/cr:reddit::t2_5jghtu8q/c:line/m:interactions.svg)

- [--] Week [---] -42%
- [--] Month [---] +38%
- [--] Months [-----] +558%
- [--] Year [-----] +1,549%

### Mentions: [--] [#](/creator/reddit::t2_5jghtu8q/posts_active)
![Mentions Line Chart](https://lunarcrush.com/gi/w:600/cr:reddit::t2_5jghtu8q/c:line/m:posts_active.svg)

- [--] Month [--] no change
- [--] Months [--] +29%
- [--] Year [--] +375%

### Followers: [--] [#](/creator/reddit::t2_5jghtu8q/followers)
![Followers Line Chart](https://lunarcrush.com/gi/w:600/cr:reddit::t2_5jghtu8q/c:line/m:followers.svg)

- [--] Months [--] no change
- [--] Year [--] +160%

### CreatorRank: undefined [#](/creator/reddit::t2_5jghtu8q/influencer_rank)
![CreatorRank Line Chart](https://lunarcrush.com/gi/w:600/cr:reddit::t2_5jghtu8q/c:line/m:influencer_rank.svg)

### Social Influence

**Social category influence**
[technology brands](/list/technology-brands)  [stocks](/list/stocks) 

**Social topic influence**
[fortinet](/topic/fortinet), [filter](/topic/filter), [how do](/topic/how-do), [hub](/topic/hub), [number of](/topic/number-of), [azure](/topic/azure), [cloud](/topic/cloud), [dual](/topic/dual), [portal](/topic/portal), [windows](/topic/windows)

**Top assets mentioned**
[Fortinet Inc (FTNT)](/topic/fortinet)
### Top Social Posts
Top posts by engagements in the last [--] hours

"Losing Internet Connectivity Was hoping someone could share their insight here. We have a FortiGate 601F running 7.0.9 At least once per day we lose internet access lasting anywhere from [--] seconds to [--] minutes. The issue then resolves itself. During this time all outbound connectivity is dead and access to internal resources is not impacted. We noticed this issue shortly after upgrading to 7.0.9 from 7.0.3 so I am leaning towards a code-based issue I have already opened a case with TAC about but have not gotten much advice other than to 'reboot' the firewall which we did to no avail. I was"  
[Reddit Link](https://redd.it/10kiyia)  2023-01-24T22:56Z [--] followers, [--] engagements


"Network Goes Offline After Any Firewall Policy Change"  
[Reddit Link](https://redd.it/16zoxpd)  2023-10-04T14:38Z [--] followers, [----] engagements


"Network Goes Offline After Any Firewall Policy Change Hello everyone I am experiencing a weird problem with my FortiGate and wanted to see if anyone has encountered this issue before or has any troubleshooting suggestions. Background: FortiGate HA Active-Passive Pair (601F) Version 7.0.12 Issue: Whenever we make any edits to any existing firewall policy or create any new policy the entire network goes down. All internal users cannot reach the internet and VPN-connected users cannot access internal resources. Once the firewall policy changes are reverted network connectivity is restored."  
[Reddit Link](https://redd.it/16zoxpd)  2023-10-04T14:38Z [--] followers, [--] engagements


"Wifi Client Connectivity on FortiAP Hey everyone I wanted to put this out there to see if anyone has seen a similar problem. Our new office has a full Fortinet stack (FortiGate Switch APs). Users can connect to our primary SSID just fine. It is a PSK SSID that uses NAC rules only to allow Windows Laptops and Android Tablets to connect. Users connect to the network. They then go home for the day and come back the next day. At that point they automatically connect but have no internet access. On the device you can see 'connected no internet'. This is quickly resolved by having the user forget"  
[Reddit Link](https://redd.it/1fjaib3)  2024-09-17T20:51Z [--] followers, [--] engagements


"Wifi Config Tips for Challenging Environment Hello I have a client who has [--] Aruba IAPs in a new building in the city. The building is a typical NYC home with thick walls many walls and hallways large HVAC units in each room closets etc. This makes it challenging as there are a lot of walls to penetrate and interference. We have [--] APs set up and potentially can install [--] or [--] more to help with coverage but I wanted to see if anyone has experience with environments like this and if any settings should be enabled disabled or tweaked to maximize coverage performance and handoff capability."  
[Reddit Link](https://redd.it/1fk2kze)  2024-09-18T20:20Z [--] followers, [--] engagements


"Web Filter vs App Control Hey Everyone I was working on a request today with a client of mine. We wanted to block social media sites for specific networks during business hours. I said OK easy We can create a policy that blocks this and have the policy only be active from [--] AM - [--] PM. We made a web filter profile that blocks the social media category and applied it. When testing we found that some social media sites still worked. We then created an application control filter that also blocked social media. When using just the app filter we had the same inconsistent results. When we put both"  
[Reddit Link](https://redd.it/1hgq0k0)  2024-12-18T01:07Z [--] followers, [--] engagements


"Changing Jekyll Site to Have the About Page as the Home Page Hello all I am using Jekyll (chirpy theme) to create a new site. https://github.com/cotes2020/chirpy-starter(https://github.com/cotes2020/chirpy-starter) (using this starter). When you open the page it has the 'home' page which essentially has your blog posts. It also has an 'about me' tab. I want to configure this so that when you browse to the site the 'home' page is the 'about me' page. When I open my site I want it to be a static about me page with a short bio of me then I can have the blogs as a separate tab. Can anyone assist"  
[Reddit Link](https://redd.it/1ifp4ew)  2025-02-02T04:23Z [--] followers, [--] engagements


"Troubleshooting Connectivity Issues for Stationary Devices We have a client that has several booths with Toast POS terminals and Epson printers. Lately we have been getting tons of reports of specific booth's terminals suddenly losing internet access or having warnings showing degraded connections. It only appears to happen on the POS system SSID; the other SSID is fine. These devices are always stationary and are well within the required distance from the AP in their booth. How do you guys go about troubleshooting issues like this We have found that rebooting the AP will temporarily resolve"  
[Reddit Link](https://redd.it/1ii23q0)  2025-02-05T04:37Z [--] followers, [--] engagements


"Losing MGMT access when enaling default route Hello I am working with a client who has their FortiGate connected to their network for staging. We wanted to test VPN access today so we enabled the static route but when this happens I lose access to the FortiGate. I am connected to the FortiGate on port1 it is just connected to their switch and getting an address via DHCP. This is how I login to the FortiGate to do configurations. I have a static route that is 0.0.0.0/0(http://0.0.0.0/0) that points to the sdwan bundle (consists of [--] ISPs). When I enable this I can no longer access the IP on"  
[Reddit Link](https://redd.it/1j3fp3h)  2025-03-04T17:07Z [--] followers, [--] engagements


"VLAN1 on Fortigate with 802.3ad Hello I am working on a network migration to bring in a FortiGate to a replace an existing firewall. This client had a flat network 10.10.0.0/16(http://10.10.0.0/16) so part of the work is to create new VLANs for segmentation. We have an aggregate on the FortiGate (x1x2) that goes to a port channel on the Aruba core switch. And the new VLANs (vlan2 [--] [--] [--] etc.) are sub-interfaces of that aggregate link. They are still in the process of migrating devices off of VLAN1 but we will still need it for now to allow them the time to move the devices to their new"  
[Reddit Link](https://redd.it/1j7ftcq)  2025-03-09T19:44Z [--] followers, [--] engagements


"Tip for Deploying ADVPN I was hoping someone with experience deploying ADVPN can provide some insight into this situation. We currently have a regular hub and spoke topology where our HQ firewall is the hub and the branch sites (spokes) connect to the HQ via tunnel. The spokes are old FortiGates so we are replacing them with brand new FortiGates. Part of the update is to migrate from the hub and spoke to full ADVPN. They also have FortiManager now to manages the devices and simplify the deployment. I have a couple of the new Forigates connected to the hq network and connected to Fortimanager."  
[Reddit Link](https://redd.it/1jrcfmb)  2025-04-04T13:53Z [--] followers, [--] engagements


"IPSec tunnels with routes to the same destinations -- Best way Hello For this one deployment we have IPsec tunnels where the routes are the same. I have attached a picture to show an example. They are tunnels to the same site for redundancy. Everything is working for users but I want to know if there is a better way to do this. I assume now the firewall is just routing on these tunnels with the same destinations via ECMP https://preview.redd.it/z93rykkue0ze1.pngwidth=844&format=png&auto=webp&s=71d6ff2456e59c1db3269c9898dc6c6f6acec9da"  
[Reddit Link](https://redd.it/1kfjl8k)  2025-05-05T18:51Z [--] followers, [--] engagements


"ADVPN- Dual Hub Dual Region I was hoping to see if anyone had any experience with this ADVPN configuration/topology. Most dual-hub architectures I see in the documentation either have a single ISP set up or the second hub is located in the same data center as the primary hub and service IPs are the same. In this set up I have [--] Hubs that are in different regions and will have different internal subnets. Each Hub has two ISPs and all spokes have two ISPs as well with the exception of [--] spokes. I currently have the primary hub configured and have [--] spokes configured and connected to the hub"  
[Reddit Link](https://redd.it/1l7cy3o)  2025-06-09T18:48Z [--] followers, [--] engagements


"Port Speeds on 200G FortiGate I have a new 200g replacing a 100f. Due to the number of ports I need I need to use the 5g ports on the 200G. Can these 5g ports operate at 1g speed I cannot test it at the moment I can set the speed to 1000full or auto in the CLI config but I do not want to run into any surprises during the cutover fortinet fortinet"  
[Reddit Link](https://redd.it/1ldz2i8)  2025-06-17T21:12Z [--] followers, [--] engagements


"Brute Force Attempts on WAN Interfaces Even Though Admin Access is Disabled I have a FortiGate that is getting hammered by brute force login attempts on the WAN interfaces. On the WAN interface I only have ping enabled for administrative access but when I browse to the public IP on the WAN port the admin page comes up. I am not sure why this is happening; this is not happening on any other firewall in the estate. Does anyone have any ideas This is running 7.4.7 https://preview.redd.it/r77xudmd7ucf1.pngwidth=435&format=png&auto=webp&s=f6777995dc8acda7834b8100a5a1766b4ebec99e"  
[Reddit Link](https://redd.it/1lzlnoc)  2025-07-14T12:55Z [--] followers, [--] engagements


"AWS Inspection Firewall Geneve Interfaces I am working to set up an AWS firewall in AWS inspection VPC for E-W and N-S inspection. It is a HA AA setup but both firewalls are technically standalone and the AWS load balancers determine what traffic goes to which device. I am trying to understand the role of the geneve interface tunnels. There are two of these tunnels built under the physical port [--] and when we had a user start sending test traffic all of the traffic flows over these tunnels. Is this correct I want to confirm as it seems like every firewall policy will have the source and dest"  
[Reddit Link](https://redd.it/1m1lyr7)  2025-07-16T19:24Z [--] followers, [--] engagements


"FortiSwitch Topology Looking for some guidance on a Fortiswitch deployment. I am using their fortiswitch guide but it does not seem to cover every use case. I have two Fortigates in a HA pair and [--] fortiswitch [---]. I have Split link configure on the fortilink interface. I then have my switches connected to each other. Switch A port [--] --- Switch B port [--] Switch B port [--] --- Switch C port [--] Switch C port [--] --- Switch D port [--] I then have my FortiGate ha pair connected to the first switch and the last switch Firewall A port [--] --- Switch A port [--] Firewall A port [--] --- Switch D port 22"  
[Reddit Link](https://redd.it/1m897yx)  2025-07-24T16:34Z [--] followers, [--] engagements


"Weird Behavior with IPsec tunnels on Azure FortiGate when upgrading from 7.0.17 I have a few Firewalls in Azure that I manage for some clients. We had to hold off on upgrading some of them since the business is 24/7 and getting a maintenance window is rather difficult. One of the firewalls has several IPsec tunnels to remote sites (remote sites are Palo Alto). When we follow the upgrade path manually to 7.4.7 after the first hop in firmware a bunch of the tunnels go down and we can not get them back up. We see this message:"  
[Reddit Link](https://redd.it/1m8nt6w)  2025-07-25T02:43Z [--] followers, [--] engagements


"Different Interfaces Same Model I am working with [--] 601Fs and when viewing the ports the GUI shows different ports. You can see that on one of them ports 1-16 look like SFP and 17-x8 show as a weird symbol. Has anyone seen this before Firewall A: https://preview.redd.it/k0auyybn1agf1.pngwidth=701&format=png&auto=webp&s=0933d8b8df8ede405d2eb1bd2b3bd64e7dfdcda3 Firewall B: https://preview.redd.it/zp506vap1agf1.pngwidth=702&format=png&auto=webp&s=aa003ff63338ae4053866b59f62ebc9d145a25b2 fortinet fortinet"  
[Reddit Link](https://redd.it/1medy97)  2025-07-31T21:24Z [--] followers, [--] engagements


"Default Gateway Learned via BGP I am deploying a FortiGate and for this setup the default route is learned via BGP. If I have the ISP connected to an interface on the Fortigate for argument's sake let's say 11.11.11.34/30(http://11.11.11.34/30) and if I have this in an SD-WAN zone and set the gateway to .33 do I just let BGP do the work then I would not need to create a default static route pointing to this SDWAN zone fortinet fortinet"  
[Reddit Link](https://redd.it/1mei2nm)  2025-08-01T00:20Z [--] followers, [--] engagements


"Policy Mode Limitations When using profile mode vs policy mode most users go with profile mode. Out of all the firewalls I work with I would say 99% are in profile mode and this is what Fortinet recommends. I have one client who uses policy-based mode. I advised that they should use profile mode but they were converting from Palo and liked how the policy mode operated more similarly to Palo so they proceeded with that. Obviously there are limitations for the Policy mode. One being that some applications are unavailable to be used in policies and are only available in profile mode. When trying"  
[Reddit Link](https://redd.it/1mqkq0s)  2025-08-15T02:16Z [--] followers, [--] engagements


"Constant CPU Spiking for IPS Engine u/seaghank u/seaghank"  
[Reddit Link](https://redd.it/1nbz7wk)  2025-09-08T20:47Z [--] followers, [--] engagements


"FortiRewards Denied My NSE7 Public Cloud security was due to expire. I took the exam [--] days before the expiration and passed. I tried to submit this to FortiRewards and it was denied. They said when you re-certify it does not count. Has anyone else experienced this In the past I believe I recertified my NSE4 and got the reward. fortinet fortinet"  
[Reddit Link](https://redd.it/1nl9vw4)  2025-09-19T17:29Z [--] followers, [--] engagements


"FMG Cloud Remote Device Access fortinet fortinet"  
[Reddit Link](https://redd.it/1ptvv7y)  2025-12-23T15:44Z [--] followers, [--] engagements


"Best Way to deploy ADVPN spoke configs to many sites fortinet fortinet"  
[Reddit Link](https://redd.it/1pubobu)  2025-12-24T02:07Z [--] followers, [--] engagements


"Add wan1 and wan2 to hardware switch interface fortinet fortinet"  
[Reddit Link](https://redd.it/1l9t9px)  2025-06-12T18:03Z [--] followers, [--] engagements


"Dual Hub Config Clarification fortinet fortinet"  
[Reddit Link](https://redd.it/1lf9k04)  2025-06-19T12:29Z [--] followers, [--] engagements


"Captive Portal on Windows PC not Appearing fortinet fortinet"  
[Reddit Link](https://redd.it/1qmrjg4)  2026-01-25T19:09Z [--] followers, [--] engagements


"CVE-2026-24858 vs CVE-2025-59718 CVE-2025-59719 fortinet fortinet"  
[Reddit Link](https://redd.it/1qoty62)  2026-01-27T23:39Z [--] followers, [--] engagements


"Issues with AP 635s ArubaNetworks ArubaNetworks"  
[Reddit Link](https://redd.it/1fzuzs8)  2024-11-01T09:21Z [--] followers, [--] engagements


"Config Critique and Optimization ArubaNetworks ArubaNetworks"  
[Reddit Link](https://redd.it/1ip0b9x)  2025-02-14T02:31Z [--] followers, [--] engagements


"AA HA in AWS fortinet fortinet"  
[Reddit Link](https://redd.it/1l38p03)  2025-06-04T15:44Z [--] followers, [--] engagements


"NAT functionality coming from Palo to FortiGate fortinet fortinet"  
[Reddit Link](https://redd.it/1mfeba0)  2025-08-02T01:43Z [--] followers, [--] engagements


"IPS Engine Constant High CPU fortinet fortinet"  
[Reddit Link](https://redd.it/1nci0b4)  2025-09-09T12:50Z [--] followers, [--] engagements


"Standalone FortiExtender for Remote Device Access fortinet fortinet"  
[Reddit Link](https://redd.it/1ocpj14)  2025-10-21T21:32Z [--] followers, [--] engagements


"FMG Policy Package overrides fortinet fortinet"  
[Reddit Link](https://redd.it/1odr396)  2025-10-23T02:04Z [--] followers, [--] engagements


"Valid FortiSwitch Topology fortinet fortinet"  
[Reddit Link](https://redd.it/1ohdjj5)  2025-10-27T12:54Z [--] followers, [--] engagements


"Restoring a new config file on a HA pair fortinet fortinet"  
[Reddit Link](https://redd.it/1onm3u1)  2025-11-03T20:11Z [--] followers, [--] engagements


"Proxmox Install Failing Proxmox Proxmox"  
[Reddit Link](https://redd.it/1opo3x7)  2025-11-06T03:24Z [--] followers, [--] engagements


"FortiSwitch NAC Database fortinet fortinet"  
[Reddit Link](https://redd.it/1oqecxb)  2025-11-06T23:22Z [--] followers, [--] engagements


"FEX 200F fortinet fortinet"  
[Reddit Link](https://redd.it/1oxfcgr)  2025-11-15T02:15Z [--] followers, [--] engagements


"Obtaining a firewall for labs/learning paloaltonetworks paloaltonetworks"  
[Reddit Link](https://redd.it/1oyansp)  2025-11-16T03:16Z [--] followers, [--] engagements


"Email not working after DNS server change googleworkspace googleworkspace"  
[Reddit Link](https://redd.it/1p9b9tf)  2025-11-29T01:02Z [--] followers, [--] engagements


"FortiGate Rugged Outdoor Deployment fortinet fortinet"  
[Reddit Link](https://redd.it/1piigy3)  2025-12-09T20:35Z [--] followers, [--] engagements


"Migrating to FortiSwitch from 3rd Party Switch fortinet fortinet"  
[Reddit Link](https://redd.it/1q237fx)  2026-01-02T16:37Z [--] followers, [--] engagements


"ADVPN- Spoke wont establish BGP with other hubs fortinet fortinet"  
[Reddit Link](https://redd.it/1qc6pf8)  2026-01-13T23:13Z [--] followers, [--] engagements


"Old vs New Central ArubaNetworks ArubaNetworks"  
[Reddit Link](https://redd.it/1qcoxgq)  2026-01-14T15:02Z [--] followers, [--] engagements


"Removed by moderator paloaltonetworks paloaltonetworks"  
[Reddit Link](https://redd.it/1qpniei)  2026-01-28T20:58Z [--] followers, [--] engagements

Limited data mode. Full metrics available with subscription: lunarcrush.com/pricing