Collection of Fortianalyzer Handlers

Yurisk · 02-19-2025

Good day everyone, I've been trying to use the official Chrome Extension for searching from here https://chromewebstore.google.com/detail/fortinet-google-search/nhemkpkfgilmlepjncbgojlojaekhibm?pli=1 and no matter what I click it shows just 1 page of...

Yurisk · 12-22-2024

fnsysctl is frequently helpful in troubleshooting Fortigates, and while its options are mentioned in the Forums here and there, no single article lists them, and not all options are mentioned, so I wrote a post to summarize the info.Originally posted...

Yurisk · 12-15-2023

Good day everyone,I added to my repo folder with FortiAnalyzer Handlers collection ready to use.Your feedback, and ideas for new Handlers are always welcome.Repo: https://github.com/yuriskinfo/Fortinet-tools/tree/main/Fortianalyzer-handlers Thanks.

Yurisk · 11-28-2023

Good day everyone, hope you all are doing well. I created a Github repo where will collect scripts, tools, anything that helps in daily work with Fortinet products.So far put a collection of Fortigate automation stitches (21) you may find helpful. Ne...

Yurisk · 05-23-2023

Good day everyone, was wondering - I am reading Fortinet documentation a lot (here in community "Tips", admin guides etc.) and sometimes stumble on incorrect/outdated or plain typo/incorrect info. Is there a way to alert someone on that?Thanks E.g. h...

Yurisk · 09-04-2025

Provided that at both ends you have Fortigates (e.g. Checkpoint doesn't play well with 0.0.0.0) then using 0.0.0.0 for the encryption domain would be a common practice, usually you also run BGP or (less so - OSPF) on them to advertise subnets of each...

Yurisk · 09-04-2025

You can set up a custom Access Profile for such admins in which you disable everything-CLI. See example of how to enable CLI commands - just do the reverse, unselect CLi commands.https://community.fortinet.com/t5/FortiGate/Technical-Tip-Enable-config...

Yurisk · 07-22-2025

It is always a good idea to start with FortiClient Compatibility matrix - to see if any given FC version is supported on your FGT FortiOS version - https://fortinetweb.s3.amazonaws.com/docs.fortinet.com/v2/attachments/afec3249-ed3f-11ea-96b9-00505692...

Yurisk · 07-22-2025

If you are talking about Web Filtering rules, then indeed External Threat Feed used as Remote category in Web Filter by Categories will do the job. And the rest of Categories filtering you may put in Monitoring only or Block unconditionally - this wo...

Yurisk · 07-22-2025

If your goal is for 500 branches to be able to bring up direct VPN tunnels with each other when needed, then indeed AD VPN by Fortigate is proprietary and I am not aware of anyone making it work with other vendors. In this case replacing your FGT wit...

User Statistics

User Activity

Google Chrome extension to search this site - is it me or it doesn't list more than 1 page?

Fortigate fnsysctl command options with examples