Description This article discusses the details of the static DNS
filter's matching logic, with examples provided to illustrate the
behavior. Scope The DNS filter operates only on DNS traffic and filters
only domain names. If it is wanted to take spec...
Description This article describes how to configure a webhook automation
stitch that posts a message into a chosen Discord channel when the
stitch is triggered. Scope This guide is applicable to any FortiOS
version that supports webhook automation ac...
DescriptionAfter creating a new DLP sensor by cloning an existing one,
changing the file-type filter on one changes the other as
well.SolutionThis happens because the file-type filters are separate
objects referenced by number in the sensor’s configu...
"If a tree falls down in a forest but there's nobody to hear it..." :)
Link monitoring is there to steer traffic away from non-functional, or
badly performing, links. But if you have absolutely no traffic trying to
pass through a given link, why woul...
> For example, with a SSL VPN access, the users using the
https://x.x.x.x:10999 are redirected to
https://myfortigate.our-enterprise.com:10999 Can you please clarify your
version of FortiGate firmware? As far as I am aware, no such
functionality is a...
Just to warn you in advance: Application-based steering in SD-WAN rules
will not work for proxied traffic. Application-based SD-WAN rules are
essentially dynamically created temporary ISDB entries: Identify traffic
to : as ⇒ create temporary ISDB en...
Looks like a pretty solid setup, good work! As a side note, what did
Netherlands and Czech republic do to you to deserve being bundled with
Russia, China, and North Korea? :crying_face:;)
You brought up interesting ideas! > Should be tiered options. 2 failures
in 60 seconds, quarantine for 1 to 5 minutes, 5 failures in 24 hours,
then quarantine IP for 24 hours. I would definitely support such
feature, but as no such option is availabl...