Hello everyone, Outgoing Remote Desktop Protocol (RDP) are risky since
it is possible for the client to share her local drives with the server
(as well as network drives, usb drives, printers, ports, clipboard,
etc.) Is it possible for FortiGate to i...
Hello, We are dealing with botnet CnC DNS related requests. DNS Filter
is being aplied in FortiGate so DNS requests asking to resolve malicious
domains are successfully redirected to Block Portal By the way,
FortiAnalyzer shows corresponding events a...
Hello, We have a fortigate FortiGate v6.4.11 running in our
dependencies, and we try to block any connection to botnet C&C We've got
a policy with 2 Security Profiles:DNS Filter redirects botnet C&C
requests to Block Portal and uses Fortiguard Based ...
We are testing #FortiEDR on a 3 Windows Server 2012 R2: A, B,
Installations went smooth and Ensilo Console showed apparently normal
steps:Collector [xxxxxxxxxxx] was registered and added to the
systemCollector [xxxxxxxxxxx] state was changed to "Degr...
Hello everyone, Is there a simulation tool in FortiGate where1) you
provide a source ip/port and a destination ip/port and service (maybe
more parameters)2) the tool returns you what policy, security profiles,
etc and actions would be applied acoordi...
Thanks for your clarification. Am I right if I say the following?DNS
Filter will redirect to a Block Portal any DNS request asking for
blacklisted botnet domain, independnetly of the DNS server
reputation.IPS will block DNS requests to a blacklisted ...
Hello, Thank you for your help. No EMS Manager at hand right
now.Security settings at th ensilo console shows the following policies,
and all of them are oset to "simulation":Execution
PreventionExfiltration PreventionRansomware PreventionDevice
Cont...
Thanks. I get "Unkonwn action 0"Fortigate1 $ diag firewall iprope lookup
10.187.1.100 12345 8.8.8.8 53 udp port2 Unknown action 0Maybe I need to
be administrator? I am on a readonly user