Hello all,Please i found this work around to prevent CSRF attack on ssl
vpn web portal: Syntax:config vpn ssl settingsset check-referer
[enable|disable]end unforunately, this does not seem to be supported on
FortiOS 5.2.I am currently using fortiOS 5...
Hello all, I have a customer who is using Forticlient for SSO in his
environment. He does not want the AV feature of the forticlient.he
installed the Forticlient using a .msi file I generated with
FortiAuthenticator settings embedded, and AV disabled...
Hello all, I have to implement policies on a Fortigate 200D (running
version 5.2.2).First, I need to allow all Lan users access to some
websites they need for work.Some of the websites are specific
(www.google.com), some of them use wildcard (ie *.fo...
Hello all,I have a fortigate behind an edge router. The edge router is
doing NAT for internal servers and internal users.Internal servers are
connected to the DMZ interface on the FOrtigate. Internal users are
connected to the INSIDE interface.the OU...
Hello all,I have a Fortigate configured as follow:- WAN1 has a public IP
(/30 facing the ISP device)- i configured a loopback interface with a
public IP (due to ISP settings, users have to be NATted to this loopback
IP to be able to browse)I have con...
Hello Dave,Thank you for the reply. It was helpful, as i was putting the
"general" web access firewall at the top of the list. I moved it down
the list, and it looks fine now. Regards,Jaures.
Hello Patrick,Thank you very much for your contributions.Finally there
was no issue with my Fortigate configs.I went through the configs step
by step, making sure of all the points you mentioned and voila! :)All
traffic with policies enabled were pas...
Hello Guys,Thank you for your replies.I finally asked the ISP to provide
me with a /30 subnet routable through the internet, which they did.All
is fine now. The Fortigate can reach internet through the WAN interface
and can also reach Fortigard servi...
