- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Audit
Hello, how to configure anti spoofing and statefull ??
Solved! Go to Solution.
- Labels:
-
FortiGate
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Opposite. If you enabled it, it wouldn't be "anti-spoofing" and most of (stateful) FW features wouldn't work.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
It's generally considered "anti-spoofing = block asymmetric routing". And statefull is any firewall that inspects the state of connections between a particular set of source and desition, i.e. session in FortiGate case. Layer3 is always state-less. So unless you disabled this base feature of FortiGate under global config (enabled asymmetric routing), you can check it off from the audit list.
Toshi
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
meaning if "set asymroute enable" then statefull and anti spoofing are active?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Opposite. If you enabled it, it wouldn't be "anti-spoofing" and most of (stateful) FW features wouldn't work.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Ah ok. Thanks