Hi guys, Am I correct in saying that application control (or all
security profiles for that matter) are not involved in the policy
matching process in FortiOS. Once a policy is matched via source,
destination, port or time, the security profiles of t...
Hi all, Looking at web filtering at the moment and when I click on the '
To have the rating of this web page re-evaluated please click here.'
button it re-directs me to a Fortinet web page. Have any of you got
configuration examples of how to have th...
Hi all, I am using a firewall running OS5. I am struggling to find where
I can view application control logs for applications that have been
blocked/passed - does anyone know where these can be viewed? In UTM
monitor/logs there is everything but appl...
Did you follow the release notes correctly? If you update to version 5
GA first this change should be covered. I have upgraded many boxes from
4 to 5 and not experienced this problem.
you could try: diag test application 99 That will
reset applications - not sure which the SSL one is, on my 100D I have
sslacceptor and sslworker. Hope this helps!
For anyone who stumbles across this post, the resolution is as follows:
Need to enable logging in the cli under the app control: config
application list edit " XXXXX" set extended-utm-log enable set log
enable
Basically in the OS5 manual it states: " The application control list
that is used must have Enabled Logging selected within the list, as well
as logging enabled within each application entry. Each application entry
can also have packet logging enabl...
Configure a second interface in the address range of the new connection
and then configure appropriate static routes and policies to allow
traffic flow. You will need to look into setting the priorities to
ensure traffic hits the right route first! G...
