Re: Fortigate API - Remove address from group addr...

pminarik · 08-07-2024

Description This article describes a script for automatically compressing FSSO Collector Agent's debug logs for the purposes of extending the log coverage and decreasing the total log size on disk, and provides example guidelines for implementing it....

pminarik · 02-22-2024

Description This article describes how to configure automation stitches to update DNS records hosted in Cloudflare upon DHCP lease renewal or PPPoE (re)connection, effectively creating a dynamic DNS (DDNS) setup. Scope This guide applies to FortiGate...

pminarik · 12-15-2022

Description This article discusses the details of the static DNS filter's matching logic, with examples provided to illustrate the behavior. Scope The DNS filter operates only on DNS traffic and filters only domain names. If it is wanted to take spec...

pminarik · 05-25-2022

Description This article describes how to configure a webhook automation stitch that posts a message into a chosen Discord channel when the stitch is triggered. Scope This guide is applicable to any FortiOS version that supports webhook automation ac...

pminarik · 08-29-2016

DescriptionAfter creating a new DLP sensor by cloning an existing one, changing the file-type filter on one changes the other as well.SolutionThis happens because the file-type filters are separate objects referenced by number in the sensor’s configu...

pminarik · 01-24-2025

I don't see MTU as a likely issue. You seem to be using PSK-based auth and the maximum payload size seen in the debugs so far is 388 bytes, which is very very far from MTU issue territory. MTU would be more likely if certificate-based authentication ...

pminarik · 01-24-2025

The longer outage I can actually explain with some confidence.Compare the relative sequence of events between the two debug outputs. I will use relative timestamps. Just rough calculations (not bothering with sub-second ranges). The first one.X = 202...

pminarik · 01-22-2025

Cursory internet search suggest a server receiving a ClientHello with SNI that is not recognized by the server. (~ client wants to connect to a hostname/domain that the server doesn't know / doesn't have a configuration for) https://github.com/openss...

pminarik · 01-22-2025

You can certainly try setting the Azure side to responder-only. Then you can observe what happens. Though if the problem is Azure unilaterally scrapping the phase1 SA, this won't solve it. 1/20/2025, 8:02:22.069 PM FortigateIP AzureIP [LOCAL_MSG] IKE...

pminarik · 01-22-2025

> FSSO Collector agent inistalled in a workgroup server For full, proper, functionality the Collector agent absolutely must be installed on a server that it domain-joined to the domain that is to be monitored. If the Collector is not a member of the ...

User Statistics

User Activity

Troubleshooting Tip: Automation Script for FSSO Collector agent debug log compression and archiving

Technical Tip: Using Automation Stitches with Cloudflare API for Dynamic DNS (DDNS) Functionality

Technical Tip: DNS profile - Static Domain Filter Matching Logic

Technical Tip: Discord Webhook for Security Fabric Automation Stitches

Technical Note: DLP - Changing the file-type filter of a cloned sensor

Re: IPSEC phase 1 SA lifetime not honouring configured setting of 28800

Re: IPSEC phase 1 SA lifetime not honouring configured setting of 28800

Re: Fortiweb - SSL Error(1112)-tlsv1 unrecognized nameSSL

Re: IPSEC phase 1 SA lifetime not honouring configured setting of 28800

Re: FSSO with polling mode guideline

Re: Fortigate API - Remove address from group addr...

Re: Rest Api - FGT - 6.4.2 - Fortiview

Re: IPSEC phase 1 SA lifetime not honouring config...

Re: FortiOS 7.6.0 Build3401 - RadSec TLS 1.3 not p...

Re: FTM Push Notification

Re: Fortigate API - Filter by network mask on /api...

Re: DNS v Web Filter v ISDB

Re: Manage 2 different domains on a single server ...

Re: FortiAuth - SNMP OID remaining tokens

Re: Issue with FSSO Agent Communication on seconda...

Fortinet Training Institute

KCS

User Statistics

User Activity

You are leaving our website