Fortinet Community

ede_pfau · 11-25-2020

hi, today I set up email alerts for various events (so, event based and not severity level based), and I am missing a setting for hardware failure events, you know, fans, PSU, temperature. A look into the CLI didn't help.Am I thinking too hard, and t...

ede_pfau · 03-02-2019

Hello fellows, for simplicity, I often use my private SSH key to log in into my local admin account on various FGTs (I mean, CLI access via SSH). Now, if instead of a local admin account I use a wildcard admin account against LDAP/MS AD in the backgr...

ede_pfau · 08-31-2016

hello all, I've got a pair of FG-200B running v4.3.18 in A-P HA mode. Each cluster member is at a different location, HA links are across a dedicated line. On each site, there is one Cisco access router (19xx) in front of the FGT providing WAN access...

ede_pfau · 08-12-2016

hello all, I'm planning to place the slave unit of a Fortigate HA cluster into a remote location. There is a leased line (layer 2) for the HA connect. Can anybody confirm that I can run the HA traffic across a VLAN between the access switches on each...

ede_pfau · 05-03-2016

hi guys, I need to size a FGT as an SSLVPN gateway. There will be around 300 concurrent users, albeit on a 400 Mbps line (as of now). No heavy UTM is planned, just some AV, anti-botnet stuff. Remote users will access intranet servers for HTTP, HTTPS,...

ede_pfau · 01-17-2022

@peterrr: this only covers outbound ports for FSA generated traffic, not traffic from VMs. The Admin Guide says:FortiSandbox uses port3 to allow scanned files to access the Internet. The Internet visiting behavior is an important factor to determine ...

ede_pfau · 01-16-2022

Well, the main task in building a sandbox is disguising it to be one. That is, if the malware finds out that the environment is restricted or somewhat 'different' from a regular host, it might decide to lay low and wait for better days, thus avoiding...

ede_pfau · 01-16-2022

The point here is that the VLAN30 interface is a sub-interface of the LAN port. But, the policy needs to allow traffic from "VLAN30" to "DMZ" interfaces, not from "LAN" interface.Then, allow PING on the DMZ interface (in the interface setup). BTW, ta...

ede_pfau · 01-04-2022

Bonne année! próspero...em, I only talk Python.HTH.

ede_pfau · 01-03-2022

After some re-working on my script, it's now more robust to invalid inputs and fully supports the hosts.deny syntax, as well as a plain text file with one line per IP as input. I thought of attaching the script here but at 520 lines length it would n...

Fortinet Community

User Statistics

User Activity

email alerts for hardware events

Admin auth per SSH key and LDAP

Synchronizing FGT HA with Cisco VRRP

HA over VLAN to remote FGT?

Right-Sizing: which FortiGate for 300 SSLVPN users?

Re: Fortisandbox outboard internet access

Re: Fortisandbox outboard internet access

Re: Fortigate DMZ accesing from LAN

Re: Import IP address file

Re: Import IP address file

Re: High availability - no cabling, no failover.

Re: High availability - no cabling, no failover.

Re: High availability - no cabling, no failover.

Re: Firmware upgrade of central and remote FGT uni...

Re: msg="iprope_in_check() check failed on policy...

Re: Fortisandbox outboard internet access

Re: Fortigate DMZ accesing from LAN

Re: Block incoming traffic from all external sourc...

Re: High availability - no cabling, no failover.

Re: Forti Analyzer 200D firmware upgrade

News & Articles

Security Research

Company

Contact Us