My setup is that of your traditional legacy WAN hub (data center) and
spoke (branch sites). Currently, my only Internet access is at my data
center. Even though they are on private WAN connections, the branch
locations' connection to the WAN is via F...
I know enough about FortiAuthenticator to be dangerous, so forgive me if
I come across ignorant on the product. I currently have mine setup where
I have a SAML connection to Azure where I can pull user and group
information; however, the only login e...
I am tweaking my DoS policies and have two inquiries for further
clarification purposes. I understand that my destination address in the
policy needs to be the public facing IP address for the servers/services
I am wanting to protect. 1. Is the firew...
I am following
https://community.fortinet.com/t5/FortiGate/Technical-Tip-How-to-block-iCloud-Private-Relay-from-bypassing/ta-p/228629
to block iCloud private relay from bypassing the security inspection. My
question come into the DNS filter portion o...
I am in the process of implementing and testing FortiClient which is
being managed by EMS. The web filtering options in EMS are not a feature
rich as the Fortigate. I do have another on-premise web filtering
solution that I use to filter on and off n...
You mention you have OM3, so this is a multi-mode fiber optic cable that
will run 10Gb up to 300 meters. Assuming you have the multi-mode optic
since you are asking about a multi-mode jumper, then you are good unless
your distance needs to go beyond ...
Just to throw my 2 cents in as well. You will also see next to the
firmware, under release type, Feature or Mature for 7.0 and 7.2 code
base. There is no Mature release yet for 7.2; whereas there is for 7.0;
and like others have mentioned, that is 7....
I attempted this today and that worked fairly well. It failed once with
something due to the interface being tied to OSPF, then it let me
attempt again and the option was to remove it from OSPF, which I did,
though when I compared the configs, the OS...
OMG, how did I miss this? I confirmed this is also applicable with
fortiOS 7.0.9, which is the code rev I am on. I will have to play around
with this, but it looks extremely promising. Thanks.
Yes, you can use your FAZ as a syslog server to collect and consolidate
logs to a single device. I use mine to collect syslog from about 2 dozen
or more (non Fortinet) devices. You would flip the toggle switch on the
dashboard to Administrative Domai...