Hello, On my Fortigate 100F I would like to create an admin user with
following profiles:- Able to change the admin users password- Able to
update the SSH key of users But I didn't find the possibilities to do in
system/admin profiles.Thanks.
Hello guys,We have Forgates 100F in our production with v7.2.8.I would
like to configure encrypted logs sending to Syslog server. But I didn't
find settings in GUI nor CLI commands.Could someone tell me if it is
possible to do ? If yes, how ?Thank yo...
Hello, I have just received a new FG 100F and noticed that there are 2 x
10G fortilink ports.From the datasheet, it said they are used to connect
into Fortiswitch. Does the Fortilink protocol work only between Forti
devices? Can I use them to connect...
Hello, Recently I need to build a second lab, the same as the existing
lab.I am thinking if I can just run a backup/restore to copy the
configuration file to the new Fortigate as soon as they are the same
model.What I concern is about the license, se...
Hello, I'd like to configure OSPF BFD between Fortigate and Cisco ASA.My
settings are as follows, but it didn't work. I found Forti sent out
packets but didn't receive from ASA. ASA:interface g0/0ospf
hello-interval 1 ospf dead-interval 3 bfd interva...
Hello,Thank you for your quick answer. Are there any alternative
solutions besides using super_admin profile ? I am afraid our Cyber team
won't accept it.eg. Fortimanager or Fortiauthenticator have more user
advanced rights ?
Hello, Good idea. I used debug bfd on Cisco. It showed nothing.Finally I
found out the issue.On ASA OSPF interface, I need to add "bfd neighbor
x.x.x.x", but it didn't appear on the config output.The Fortigate config
is the same. Thank you for your h...
Hello Fullmoon, I've just tested in Lab.I cannot use HA port combining
with another port to create a redundant interface.But I can if I use two
data ports without HA; eg. port10, 11 or port2, 3.I think this is
limited by hardware.
Since there were logs in implicit deny, I guess the first rule (permit
all/any) doesn't contain all services.I'd like to know what are the
services/ports it contains. Does "ALL" mean only ports tcp/udp 1-65535
and ICMP? anything else? About the ICMP ...