It would be cleanest to remove the IPsec config if you plan not to use
it. A local-in policy is the way to narrow down the source by address,
range or country if you need the IPsec VPN. As best practice, move the
SSLVPN port to a higher number, e.g. ...
hi, I suggest to use an identity based policy in which you use the VIP.
Just add a user group (with just one user) to the source field
(formerly: source address field) in the policy. Only if your user has
got a fixed public address you might use it t...
That depends on your skill level and determination. 1- the easy way:
pull the info via SNMP (v3). A python script could interface with SNMP
and write an XL file. 2- use the REST API to directly access the FGT
internals. Pull the data, convert, write ...
