Hi I am testing some Explicit Proxy configuration and have configured an
authentication rule and scheme to use agentless NTLM auth, which works
fine. I can see the authenticated users in the Firewall User Monitor
Dashboard, where is shows a time-out ...
I am configuring FSSO using the polling method and I am seeing some
strange results. The Fortigate is seeing the user logon event and I can
see the corresponding Kerberos event IDs 4768 and 4769 on the AD server,
however the Fortigate is then logging...
Hi I have a requirement to block a range of file types, however quite a
few of them aren't in the supported file type list in the file filter or
for use with DLP filters. For example, I need to block inf, jse, lnk,
vbe, vbs extensions, but they are n...
Hi I have a Fortigate 40F running v7.2.2 and I am trying to configure a
DLP profile to block downloads of files 100MB or larger. This profile is
applied to a proxy policy. I've been testing the profile with various
sizes of downloads and it doesn't a...
Hi I have an installation on a 60F on v6.4. which uses the same port for
ingress and egress, with a requirement for web filtering. Initially the
traffic wasn't hitting the firewall policy, however I now have the web
traffic hitting the firewall polic...
Thanks pminarik I found what the issue was through the fssod debug, the
time was out between the Fortigate and the AD
server[process_logon_time_stats:101] logon(john:10.245.225.41)'s
effective time(1673970919) on Fortigate is before that(1673971018) ...
What I've done is created a dlp filepattern to cover the file types that
I need to block, then applied that to a dlp profile, which is then
applied to the proxy policy. It looks to be working as desired, will
need to do more testing to confirm. I don...
