Hi all, I run anomaly DoS detection between a students network and our
campus lan. Thresholds are still default values. Problem is our campus
dns server.I get many udp_dst_session, udp_flood, ip_dst_session just
because of legitim (?) dns requests. 9...
Hi all, I try to get "loadbalacing" (better call it host routing)
working with virtual server and HTTP host as balancing method. I got a
cert with all 3 server names as aliases, configured all 3 servers with
their hostnames. Problem: What and how man...
Hello, we write the year 2021 and ipv6 has grown to an over 30 years old
protocol. But it still seems to lack basic support. We switched from
OPNsense to FortiGate and our network is dual-stacked. With OPNsense it
was no problem to declare FQDN addre...
Hi @Debbie_FTNT ,your solution is even better than whitelisting. I
created a second rule above the triggering one which I restricted to
this single dnsserver and port 53/udp. There I could set greater
threshold values and now my logs get cleaner agai...
Hello @Debbie_FTNT , thanks for your reply. We already have multiple
interfaces enabled, since zones are to unflexible (interfaces cannot
belong to more zones nor used standalone any more). So it was easy to
create this match-all-server rule and it s...
Hmmm, seems nobody uses ipv6 with a fortigate. That explains the lack in
ipv6 support when nobody asks for these features. Well, I found the
solution myself. Since fortigate cannot work dual-stacked objects, you
have to create a separate address6 FQD...
