Dominik Weglarz, IT System Engineer
Dominik Weglarz, IT System Engineer
PCNSE
NSE
StrongSwan
1. I can' t find " log & archive statistics" widgetThis feature has been removed from 5.0.
2. In firewall policy I cannot create IPsec policy (in GUI, in CLI I could do it)Policy-based IPsec is disabled by default. The preferred method is interface-based IPsec. If you would like to use policy-based, you can enable it under " System -> Config -> Features" on the GUI. There is a " Policy-based IPsec VPN" option.
4. In event logs pane - section AV, WebFilter, AntiSPAM, IPS are gone ??!!!Are you referring to the " Security Log" section? The individual security feature logs are disabled by default as the same information is available in the traffic log. If you' d like to restore those sections, you can enable " extended-utm-log" in the CLI for the relevant security profiles. The log menus will show up after logs are available. Please also confirm that the correct log device is selected under " Log & Report -> Log Config -> Log Settings" for " Display Logs From" .
5. In Security profiles I can edit only default profiles (but I can see and select more in FW policy rules).Similar to policy-based VPNs, editing multiple security profiles is disabled by default on desktop platforms. To enable it, visit " System -> Config -> Features" and enable " Multiple Security Profiles" .
NSE8
Fortinet Expert partner - Norway
Dominik Weglarz, IT System Engineer
IMHO from security perspective logs outside company is not too good idea. I know - encrypted... Fortinet ... etc. but still it goes to stranger.Agreed, but they do offer FortiAnalyzer instead. Depends on the number of devices you have, but if it' s 10+ chances are you probably want this. I also find sflow + a flow analyzer quite useful.
AtiT
Dominik Weglarz, IT System Engineer
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.