Re: How to add 1000+ IP addresses?

hermann · 01-04-2022

afaik you should not be worried about TLS 1.2 and before, each packet will be inspected. I have no idea if UTP works smoothly with TLS 1.3, although.

hermann · 01-04-2022

Deep packet inspection is a MUST to enable any control of sub-URLs in the content filters. Without DPI the Fortigate is not able to see any content in encrypted packets. The host name could be visible, though, if it is a part of the SSL/TLS handshaki...

hermann · 01-04-2022

Do you use deep packet inspection for this encrypted traffic?

hermann · 12-03-2021

agree with Cudin.Or, If you need access to Webservices only, you could make use of a Web proxy with a smart proxy.pac script that the VPN clients should use. The script could manage the access a smart way: AWS access through the Web proxy using the I...

hermann · 11-30-2021

I think it is worth to ask Fortinet support for help. Just thinking loud: AFAIK the SNMP counters for a network interface are just increased continuously with each byte flowing through the interface. At some point the counter, which may be defined as...

User Statistics

User Activity

Re: Webfilter blocking URI (Page) after allowing the Host Address (Domain)

Re: Webfilter blocking URI (Page) after allowing the Host Address (Domain)

Re: Webfilter blocking URI (Page) after allowing the Host Address (Domain)

Re: How to add 1000+ IP addresses?

Re: SNMP Data Missing Under Load

Re: How to add 1000+ IP addresses?

Re: SNMP Data Missing Under Load