Hi,First, I can see that you are using a Non-Standard Port 2021 instead
of 21. The Fortigate will monitor the FTP session and you might have
issue with NAT (Port and the Internal address). 1) Change to 21 2) Test
and Read the Log
The 425 is related to the PORT mode and the FortiGate (Any Firewall). In
Port Mode, the FTP server chooses ----TO INITIATE TO INITIATE TO
INITIATE; meaning from FTP To your Inside ------ a connection from port
20 to the Port choosen by the Client and...
First, congratulations for getting the new job. Wishing you success and
more success. I believe and trust that developping a good carrer with
Fortinet is win-win for all..Second; and this advise is not only for
you, but to any Security Specialist loo...
Check your IPS Filter :To better understand the Filter: Please note that
Fortinet are providing more than 7000 Signatures to help detect stop
andprevent threats. You need to build your own profile based on your
infrastructure.For severity : You can C...
True that the IPS is there to block attacks from Sources. But, what if
the Destination becomes also a malicious ?My Recommendations are : 1) Go
for a Deep Scan of your Web Server and check for vulnerabilities,
specially Bot C&C. This may block your w...
