Hi, quick query just looking to disable some policies in my test lab
What is the best practice with Fortigate to disable before fully deleting policies?
Solved! Go to Solution.
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Are you asking about the purpose of disabling policy? It might be used when you want/need to temporarily remove the policy from the policy lookup process. Maybe for debugging, or maybe it's not quite ready to be deployed for whatever the reason is. If don't foresee any chance to re-enable it, I would delete it instead.
Are you asking about the purpose of disabling policy? It might be used when you want/need to temporarily remove the policy from the policy lookup process. Maybe for debugging, or maybe it's not quite ready to be deployed for whatever the reason is. If don't foresee any chance to re-enable it, I would delete it instead.
Thanks very much I have the cookbook for it, do you have any links that show best practice, again thanks I appreciate it
I don't think any document as "best practive" for that.
Thanks no worries
Yeah do not know a BCP per-se but we disable policy for pre-launch where we install them and let them sit until ready to go live same for when we tear-down policy and want a cool-down period. We might disable policyID 77 for 48hours and then delete
We do the same thing in my day job with junos and chkp.
Ken Felix
PCNSE
NSE
StrongSwan
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1703 | |
1092 | |
752 | |
446 | |
229 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.