I would like to permit a SolarWinds Orion application server access to
specified SolarWinds sites ... but block access to the rest of the
InternetIdeally, the Internet Services Database would include an entry
for Orion ... and while it does include e...
Under Log View... Log Browse... I can see how to download past logs in
~55MB chunks, which tend to cover 5-10 minute chunks of time. I can see
how to select one at a time. Or even a screenful at a time. When I
choose Download, I then must confirm, in...
Is anyone else doing this?I am using the following list of reserved
addresses: https://en.wikipedia.org/.ki/Reserved_IP_addressesDoes the
following look like a coherent approach? config firewall address edit
"bogon-zero" set subnet 0.0.0.0 255.0.0.0 ...
Would anyone have a mental model to offer for what the SSL VPN feature
is doing when it is 'checking rules'? I'm trying to spin up an SSL VPN
service, using the heavy FortiClient, the client sees "Permission
denied". The relevant output of "diagnose ...
BRIEFI'm poking around Compromised Hosts ... thus far, only my DNS
servers are showing up* Drilling in, I see uniformly that the Detect
Method is 'infected-domain'* What do other people do? Do you just live
with all your DNS servers topping the Compr...
Lots of help from TAC on this one ...Examining the output of 'diag test
authserver ldap', we notice that the group list displayed is incomplete.
And ... we restrict VPN access via membership in an AD group, call it
"PermitVPN"- When the output of 'di...
I started a TAC ticket last week ... :) Thanx for the idea to experiment
with a local user; I had forgotten to do that. LOCAL USERice-a-fw $ diag
test authserver local "AD-Telecommuter VPN Users" testvpn secret
authenticate user 'testvpn' in group 'A...
diag test authserver ldap "Telecommuter VPN Users" ""
""- That works fine, as does the GUI version (which I suppose
i just invokes ' diag test authserver ldap ... '- There are (3) LDAP
servers inside "Telecommuter VPN Users"; each of them passes the ...
config vpn ssl settings[...] config authentication-rule edit 1 set
source-interface "wan1" set source-address "FortiVPN-Interface" set
groups "Telecommuter VPN Users" set portal "Full-Tunnel Service" set
auth ldap next end I see ... you are suggestin...
