Hey Guys, How much is a FortiAnalyzer in Azure running you monthly to
maintain? I am half tempted to make the jump from appliance to that but
I wanted to wrap my head around those particular costs first. How do you
guys deploy it as well from a secur...
Just wanted to give you guys an update. I have a wide range of
production hardware running 5.4.1 now (models from FWF60D all the way up
to FGT 300D so far). Everything seems to be running fine and I haven't
noticed any issues. Only real thing I had t...
Well, based on what I am hearing from others, it seems 5.4.1 is a dud. I
haven't pushed it onto my home 92D yet but I am probably going to sit
back and see what others are saying before I decide to do so. Here comes
the "When does 5.4.2 hit? thread" ...
We have app control applied to our DNS outbound policy.The app only
allows DNS out on the DNS policy We have noticed in our logs that we see
Google.Plus being identified (and blocked) on our DNS policy. Have you
guys seen that? Is this common or is t...
Tezro is wrong. There is nothing wrong with the recommendation or his
following questions. He provides info into how to gain more quality
logging and then asks if anyone has any other good use cases to make
those events that are being logged useful.
I highly recommend running FortiOS 6.4.6 on FortiSwitches (that support
it) if you are going to run FortiGate's on 6.4 code with fortilink and
switch management enabled. I ran into strange behavior with 6.4.3
FortiGates and 6.2.x FortiSwitches. Forti...
If you are only wanting to allow access then you just build policies for
traffic that need to cross interfaces. If you are wanting to bridge
interfaces then you will have to get more creative. I recommend avoiding
Soft switches personally as they are...
I would personally make FortiGates (and any other devices that require
DNS) to utilize internal DNS Servers. Let those internal DNS servers
then forward out to Google, Cloudflare, or whatever external DNS service
of your choice.
There are a couple of things at play here most importantly is:What ports
are being utilized for each servers connection? If you are using two
ports that run of the same NPU / chips you could very well be hitting
that particular chips limitation. Anot...