Is fortigate firewall v4.3.16 or v5.2.1 affected by this glibc
vulnerability. I could not find anything on fortigate security
advisories page https://security-tracker..../tracker/CVE-2014-8121
I have just moved to a fortigate 5.2.1 with VDOM access and can't see
UTM or IPS logs. Does anyone know where in the menu they should appear -
looking at docs there should be something called either IPS or UTM logs.
In v4.3.16, any IPS signatures fir...
All our traffic goes via a load balancer and ssl traffic is terminated
there. All attack logs for IPS signatures show the IP address of that
load balancer and do not show any details of the url which is what the
load balancer uses to route traffic. I...
I saw this documentation describing how fortigate IPS can handle SSL
traffic for deep content inspection: "......In this schema, is clear
that the SSL/TLS handshake is interrupted, and the FortiGate is required
to present a certificate for the URL re...
We have strong-crypto enabled on all our fortigates but hmac-sha1-96 is
allowed and our CIO office want that disabled Is there a way to do this
with strong-crypto enabled?If not, how can I configure the MAC and
encryption ciphers I need on our fortig...
Perhaps that is the case. The IPS logs are showing as 0 size using cli
commands even though I have disk logging turned on. I also have the UX
configured to use disk logging Does fortinet provide some link to
testing various IPS signatures easily (not...
One last thing is whether the fortigate 300c supports scanning SSL
encrypted traffic. I looked at the hardware spec and it states it
supports content inspection but I am not sure if that is the same?
http://www.fortinet.com/sites/default/files/produc...
Can someone answer my original question please. I have posted it below
again. If the solution requires an upgrade, then fair enough but would
appreciate an explanation in context of solution. thanks We have
strong-crypto enabled on all our fortigates...
Thanks for this - I will investigate v5.2. Is it limited to one
certificate per fortigate, i.e. can I still use this if we have servers
across different domains set server-cert
Hi Just to be clear, I am looking for deep content inspection on inbound
traffic in the fortigate firewall IPS module. We have potentially
millions of end users accessing a multitude of applications behind our
fortigates. Most apps will be under one ...
