Hi, has anyone managed to configure a logging policy in Fortiweb, which
will only send out local logs to syslog? We want only local errors,
authentications, config changes and so on the get sent to syslog, but
not send all the traffic and attack logs...
Hey, has anyone a more detailed information about the trade-off the
"sanboxing-prefilter" function might have? - there is a massive
performance boost, when you use them, but what will be the security
impact? Usage: sandboxing-prefilter [-h|-l|-e|-d]
Hi, we got one customer company running for some time using FAC to
authenticate 2 Factor Users in a AD domain forest with about 20
sub-domains. We use realms which match the domain name for the users
like firstname.lastname@example.org or samaccountname@c...
Hi, does anyone got some details about the Black/White IP checking on
the Fortimail? Esp on the use of the X-Originating-IP attribute? I
always thought, that Blacklisted Sender IPs will not hit if the e-mail
comes from a whatever not listed ip addres...
Hi, is there any way to export a certificate with its private key from
the Fortigate? Not if the internal ones, but one the certs I installed
there.. I got an certificate, which I use for SSL offloading / Virtual
Server config that I need to migrate ...
Hi, this might be caused due to a normal behavior and not from any
error! DHCP will trigger the DHCP Server to check whether adresses are
available in the phase of offering. If you have a utilized DHCP pool and
there are new clients requesting IP adr...
redy wrote:This looks reasonable, but question where to create link and
where add policy? Now it looks like all interfaces and rules should be
in created in Global or ROOT vdom so what is the point to have vidoms ?
To be honest - I don't know why you...
Hi, there is a known Bug in FortiOS 6.0.8, 6.0.9 and 6.2.3 which will
randomly drop sessions when FSSO is being used. Bug ID 582265 There are
interim builds available - So better create a support case! BrRoman
redy wrote:Hi All,I have a problem to configure setup like in the topic.
I have 1 ISP with pool of 64 IPs connected to port 1 (WAN), port 2 (LAN)
is connected to trunk port on internal network switchHow to configure
vdom to have access to internet an...
Hey, i would really agree on not using "any" in firewall policies.
Fortigates are zone based firewalls. You group your interfaces in zones
and write policies like:srcintf INTERNALdstintf EXTERNAL or DMZ and so
on... Just copying rules from a ASA/Pix ...