Hi Guys, Does anyone have an easy method for finding the oldest log for
a device on the FortiAnalyzer? I'm adjusting quotas and I want to be
sure I have a sufficient log retention. I know you can go into log
browse and view the dates on the files the...
I have a customer requesting a report that shows bandwidth throughput
speeds for each of their IPSEC VPN tunnel interfaces. Is this something
that can easily be obtained from the FortiAnalyzer or should we be
looking to a different product to produce...
Does anyone know the reasoning behind FortiGuard having a IPS signature
set to disabled by default? If anyone has suggestions for finding other
signatures that are set to disabled by default I would be interested to
hear your ideas. I'm under the imp...
Is there a method in which the FortiSandbox can generate an AV signature
based on a malicious file that it has identified? Are we expected to
wait for FortiGuard to produce an AV signature based on the file or can
the Sandbox itself create AV definit...
I'm looking for some better understanding of how the FortiGuard IP
reputation service works. What features do I need to enable on my
FortiGate to take advantage of IP reputation?
I'm still not 100% sure on malicious vs. suspicious. In 5.4 the sandbox
should be able to update directly to the Fortigate but for previous
versions for FortiOS you have to wait for the update to come down from
FortiGuard. It's been a while since I h...
@mramon79 shared some important info to keep in mind for this topic.
Here is the latest "life of a packet" document from Fortinet but I'm
guessing they didn't include his suggested edits.
There isn't anywhere to view actual session info per se but you might
find the info under "Policy > Monitor" to be helpful. Creating an extra
policy to isolate the traffic you are interested in to get a more
focused look at the info you are needing w...
Hmm can you try accessing a non-HTTPS to force authentication and see
what happens? FortiOS 5 definitely has some issues with showing block or
authentication pages over HTTPS. They claim to have addressed this in
5.2. What OS are you running?