Veterans Employment Toolkit
Veterans bring valuable skills and experience from their military service to your workforce. This toolkit is designed to help you better understand how Veterans can be valuable assets to your company....
Blog Articles
Extending Next Generation FortiGate Firewalls to Kubernetes With Calico Enterprise
Container use continues to grow, and Kubernetes is the most widely adopted container orchestration system, managing nearly half of all container deployments. Nearly every enterprise on the planet is a...
Bi-directional DNAT on FortiGate Firewalls
I am a BIG supporter of Central NAT. I believe it is in-line with the present day firewall platforms. Even if you use Policy NAT (the original way on FortiOS) or Central NAT you normally want bidirect...
Separate VRF for Out-of-Band Management in FortiOS
I am currently running FortiOS 6.4 on this FortiGate. The use case is to have an out-of-band interface that points to a separate routing table or in this case, a VRF which stands for Virtual Routing a...
Multi-Factor Authentication with FortiToken, FortiAuthenticator and FortiGate
Today, a customer asked me about selectively assigning FortiTokens to AD users using FortiAuthenticator. In this use case, I am going to use an AD group Token-Users to auto-assign FortiTokens to and a...
Deploying SSL VPNs Using Multiple Realms
Realms are a feature on the FortiGate that I have written about in the past, but I never really did a detailed dive into them and how and when to use them. When a customer tells me they want to assign...
EMS for Internal and External FortiClients
When deploying EMS in your environment, you want to make sure the users can communicate back to EMS when connected internally as well as externally. Is seems that there is some confusion so I decided ...
Anti-SPAM Feature on FortiGate Firewalls
Normally, I position FortiMail for anti-SPAM at customers. However, today I decided to play with the Anti-SPAM feature on the FortiGate itself. NOTE: You will require the UTM, Enterprise or the ala ca...
VWire with FortiGate Firewalls
Although the FortGate CAN operate in transparent mode, I rarely used/use it. Fortinet introduced VWire which is a layer 2 pair of interfaces. These interfaces do NOT have an IP address assigned to eit...
FortiSOAR Overview and Use Cases
FortiSOAR™ is a holistic and enterprise-built security orchestration and security automation workbench that empowers security operation teams. FortiSOAR™ increases a team’s effectiveness by increasing...
Return-to-Work Toolkit for Employees & Employers
An organization's workforce is its most valuable asset. And when an employee can't work due to illness or injury, it impacts not only an organization's productivity, but also its morale. This toolkit ...
Connect to both Fortigates in an HA Cluster Separately
When you configure a FortiGate in HA, normally, there is no way connect to the second box unless you ssh to the master and then connect via it to the secondary. The only way to connect to the secondar...
Binding to LDAP with Minimum Access
Most of the documentation out there will tell you to configure a Domain Admin user to perform LDAP authentication. When I am doing a Proof-of-Concept (PoC), and I tell a prospective customer to create...
Free Online NSE Training until the end of 2020
Fortinet announced today it is opening the entire online, self-paced catalogue of advanced Network Security Expert training courses for free. Fortinet is making 24 advanced security courses available ...
Syslog Filtering on FortiGate Firewall & Syslog-NG
We recommend sending FortiGate logs to a FortiAnalyzer as it produces great reports and great, usable information. However sometimes, you need to send logs to other platforms such as SIEMs. When sendi...
2-Factor Auth Using Email on FortiGate
Putting together a presentation I am giving to some customers and decided I wanted to put together an article with a topic that is rarely discussed. The FortiGate firewall can do two-factor authentica...
IPSec Remote Access VPN Naming Limitations on FortiGate
IPSec Remote Access VPN Naming Limitations on FortiGate There is a 15 character limit on the interface names in FortiOS. When using IPSec for remote access VPNs, it is important to take this into acco...
Troubleshooting FortClient VPN Connectivity Issues with FortiGate
As more and more users are using remote access VPNs and probably using FortiClient, I wanted to share the errors you are encountering based on the percentage when it fails and some troubleshooting ste...
Adding Elastic IPs to AWS FortiGate to be used as VIPs
Lately I have been doing some AWS. I am looking to get certified in the short-term. I was struggling with a customer after I deployed a FortiGate in AWS and could not figure out how to allocate Elasti...
Running Post VPN Login Script
I have been getting asked this question since this coronavirus thing started. I decided I would address it with an article. So the use case is: You want to run a script after the user logs in. This co...
Deploying FortiAnalyzer in AWS
I have been playing with AWS a lot since the pandemic. I wrote another article about adding some VIPs using Elastic IPs. Here I will walk through deploying FAZ in my AWS lab environment. Here is my AW...
Restricting YouTube to Specific Channels with FortiGate
In this article, I discuss how to us the FortiGate and the Web-filtering profile to selectively whitelist certain YouTube channels while blocking all other YouTube channels. I also discuss installing ...
SHRM Foundation Veterans at Work Certificate Program
Fortinet Team and FortiVet Program Employer Partners,The SHRM Foundation Veterans at Work Certificate, developed for HR professionals, hiring managers, and front-line supervisors, is a multi-faceted p...
Announcing the Accelerate 2020 Digital Edition
As the global COVID-19 pandemic has curtailed our Accelerate 2020 plans in Barcelona, New York and Riviera Maya this year, I am excited to share the news that Fortinet has just announced the Accelerat...
2020 FortiVet Military Service Survey
Team,As a proud sponsor and supporter of our military veterans, we are conducting a survey to understand the impact military service members and their families have on Fortinet’s business and culture....
Securely Transitioning to a Teleworker Model
Key Takeaways: Transitioning to a remote workforce has its challenges in terms of logistics to get people up and running from their home offices. Organizations also need to prioritize reducing this ne...
Free Cybersecurity Training Courses: Awareness training for teleworkers, technical training for IT professionals
Whether you are upskilling, reskilling or educating yourself to help close the cybersecurity skills gap, it doesn’t matter. Fortinet has three no-cost courses available to anyone who is interested in ...
FortiAI: Virtual Security Analyst Revolutionizes Threat Protection for SecOps
Today’s businesses are fully aware of the consequences of a successful cyber attack, and yet they continue to struggle to put together a cyber security strategy that can deal with them effectively. An...
Streamlining Security with FortiSOAR
Executive Summary: Challenge: Hiring skilled employees that can adequately protect the business from evolving threats Orchestrating point solutions together & having consistent security protections ac...
Update: Accelerate 2020 Barcelona event has been cancelled
We'd like to inform you that Accelerate 2020 Barcelona has been cancelled due to the health and safety concerns associated with the coronavirus. What to expect; actions to take: Registration fees paid...
Anthony_E
on:
Community Chatter
on:
Bad Wi-Fi - a real world motel example
