SELECT vd, policyid, srcip, dstip, itime, service, count(*) AS
numoftimes, from_itime(itime) as date_time FROM $log where $filter GROUP
BY vd, policyid, srcip, dstip, itime, service ORDER BY numoftimes DESC
itime does not dispaly as date and time, is...
I would like to create a zone called "dmz", my FG100D will not let me as
it conflicts with a "duplicate" name dmz under physical ports. I changed
the Switch mode to physical. Is this possible to rename the physical
port to stop this Zone naming confl...
I'm running FAZ v5.2.5-build3175 and have configured my FGT Device under
Device Manger. FGT Device is green when unencrypted and traffic is
processed by my FAZ but when I configured Secure Connection with localid
and password the IPSEC Tunnel status ...
Hi all, I trying to connect a site-to-site VPN with my customer who are
running a Cisco ASA. Phase 1 seems to be complete, Phase 2 fails.
Speaking to my customer, so far I cannot see any discrepancies between
our Phase 1 and 2 configs. When I debug m...
I've setup a new DoS Event handler on my FortiAnalyzer (IPS attack).
Rather than change the DoS thresholds on the FortiManager DoS policy to
start generating notifications by email and SMS is there anyway you can
test directly from the FortiAnalyzer ...
yeah there doesn't seem to be anyway of changing a physical port name. I
speak to our Fortigate expert in Nice, France every week, will find out
for sure form him I hope.
I resolved myself in the end! You'll see the last message........ike
2:S2S-VPN-IGM:1039813:S2S-VPN-IGM-P2-P10:10385035: add ISAKMP
RESPONDER-LIFETIME 28800thereafter the session never comes up. I asked
the client to debug, they sent me their output a...
emnoc wrote:FWIW I had a hard-up CIO and Security complianec officer,
they wanted to filter "unapproved traffic" so what we did was the above
but we went extra far. We blackholed all traffic from the 35+ fortinet
devices to fortiguard on the applianc...
