hi, today I set up email alerts for various events (so, event based and
not severity level based), and I am missing a setting for hardware
failure events, you know, fans, PSU, temperature. A look into the CLI
didn't help.Am I thinking too hard, and t...
Hello fellows, for simplicity, I often use my private SSH key to log in
into my local admin account on various FGTs (I mean, CLI access via
SSH). Now, if instead of a local admin account I use a wildcard admin
account against LDAP/MS AD in the backgr...
hello all, I've got a pair of FG-200B running v4.3.18 in A-P HA mode.
Each cluster member is at a different location, HA links are across a
dedicated line. On each site, there is one Cisco access router (19xx) in
front of the FGT providing WAN access...
hello all, I'm planning to place the slave unit of a Fortigate HA
cluster into a remote location. There is a leased line (layer 2) for the
HA connect. Can anybody confirm that I can run the HA traffic across a
VLAN between the access switches on each...
hi guys, I need to size a FGT as an SSLVPN gateway. There will be around
300 concurrent users, albeit on a 400 Mbps line (as of now). No heavy
UTM is planned, just some AV, anti-botnet stuff. Remote users will
access intranet servers for HTTP, HTTPS,...
Hi, SD-WAN essentially is a zone plus monitoring plus policy routing. To
correctly steer the traffic from one WAN to the other, you will need all
of this - SD-WAN is the way to go. You can set thresholds for failover,
set the preferred line etc. If t...
hi, this is a typical situation when configuring VoIP.SIP is unicast TCP
so with the right policy you'll get the dialing OK. Voice OTOH is UDP
across some randomly selected port (like 40000-59999). Years ago, the
solution then was to just open 20.000...
regarding Q2 (upgrade via TFTP or USB):For using TFTP upgrade, you will
have to establish a working network connection first. On a notebook, you
will have to set up a static IP, a TFTP server, connect FGT and NB via
cable (find a free port on FGT), c...
in CLI:conf log syslogd filter and get the options by typing'set ?' IMHO
setting up a FAZ-VM without license would be the most accurate way to
see what is coming onto you. The dashboard of the FAZ clearly shows
logs/sec, GB/day etc. etc.Unlicensed VM...
Have you checked "Security Fabric" / "Automation" yet on the FADC? You
can automate actions like sending emails, triggered by a lot of events
or measurements. Maybe this will work for you even without involving a