From 47b4d092c5373e6f79ed3da96f223d6ec9793fdc Mon Sep 17 00:00:00 2001
From: RustDesk <71636191+rustdesk@users.noreply.github.com>
Date: Thu, 16 Oct 2025 22:32:43 +0800
Subject: [PATCH] Updated FAQ (markdown)

---
 FAQ.md | 21 +++++++++++++++++----
 1 file changed, 17 insertions(+), 4 deletions(-)

diff --git a/FAQ.md b/FAQ.md
index 76d57a9..8f43e4e 100644
--- a/FAQ.md
+++ b/FAQ.md
@@ -749,7 +749,7 @@ User 2:
 If you run container (Docker etc), there might be DNS problem with container, https://github.com/rustdesk/rustdesk-server-pro/issues/136.
 https://www.reddit.com/r/docker/comments/1b0q9vd/set_dns_for_docker_container/
 
-- Case 4:
+- Case 4-1:
 Some users encountered TLS issue on server (especially on Windows server, I would suggest you switch to Linux server), you need to [update CA root certificates](https://www.google.com/search?q=how+to+update+update+CA+root+certificates+on+server&oq=how+to+update+update++CA+root+certificates+on+server&gs_lcrp=EgZjaHJvbWUyBggAEEUYOTIKCAEQABiABBiiBDIKCAIQABiiBBiJBTIKCAMQABiiBBiJBTIKCAQQABiiBBiJBdIBCDg3MzRqMGo5qAIAsAIA&sourceid=chrome&ie=UTF-8) on your server.
 
 ```
@@ -758,7 +758,7 @@ C:\Windows\system32>curl -X POST https://rustdesk.com/api/lic/license/check -H "
 curl: (60) schannel: SEC_E_UNTRUSTED_ROOT (0x80090325) - The certificate chain was issued by an authority that is not trusted.
 ```
 
-- case 5:
+- case 4-2:
 
 ![image](https://github.com/user-attachments/assets/3a183d8a-3d92-4f70-9603-08b894aeda65)
 
@@ -766,11 +766,24 @@ curl: (60) schannel: SEC_E_UNTRUSTED_ROOT (0x80090325) - The certificate chain w
 > 
 > We also had the problem on the rustdesk website.
 
-- Case 6:
+- case 4-3:
+
+> Failed to update license: network error: reqwest::Error { kind: Request, url: "https://rustdesk.com/api/lic/license/check", source: hyper_util::client::legacy::Error(Connect, Ssl(Error { code: ErrorCode(1), cause: Some(Ssl(ErrorStack([Error { code: 167772294, library: "SSL routines", function: "tls_post_process_server_certificate", reason: "certificate verify failed", file: "../ssl/statem/statem_clnt.c", line: 1883 }]))) }, X509VerifyResult { code: 19, error: "self-signed certificate in certificate chain" })) }
+>
+> And my ca-certificates is already the newest version (20230311+deb12u1).
+>
+> curl -X POST https://rustdesk.com/api/lic/license/check -H "Content-Type: application/json" -d "{}"
+> 
+> curl: (60) SSL certificate problem: self-signed certificate in certificate chain More details here: https://curl.se/docs/sslcerts.html curl failed to verify the legitimacy of the server and therefore could not establish a secure connection to it. To learn more about this situation and how to fix it, please visit the web page mentioned above.
+
+Cause:
+> the issue was coming from our Fortinet firewall.
+
+- Case 5:
 
 It was tailscale needing reauthentication on the debian VPS.  Because it's 100.100.100.100 magic dns was first in the dns list it kept failing before it tried the regular dns.  Disabled the need to reauthenticate that node and problem solved. 
 
-- Case 7: 
+- Case 6: 
 
 > You can close my ticket. It was my firewall blocking the license server IP.