Re: FortiNAC Intune integration, filtering devices

jokes54321 · 06-20-2025

While we've been running FortiManager for years, we finally took the time to setup it up to fully provision a firewall using Provisioning CLI Templates. We built around 17 individual CLI Templates that configure various sections of the config, and on...

jokes54321 · 05-19-2025

Currently running FortiOS 7.2.11 and we're exposing a web server behind a Virtual Server configured for SSL offloading. Our security team is asking us to set the minimum protocol to TLS 1.2, but we've been asked to make sure no legacy clients are sti...

jokes54321 · 04-11-2025

We've been running FortiNAC for 2 years now and are starting to deploy Intune joined workstations. I followed the 9.4.6 Intune integration guide and it's successfully polling Intune and bringing in devices. The issue we are now seeing is, we're a glo...

jokes54321 · 01-04-2024

Does anyone have MS NLB configured with multicast working on Fortinet gear in routed mode? We have an HA pair (active/passive) of 1801F firewalls with a pair of 3032E switches attached via Fortilink. The Microsoft services we are trying to configure ...

jokes54321 · 12-04-2023

I had a strange issue escalated to me over the weekend. A site recently migrated from MPLS to IPSec, and after a week, they started experiencing a periodic outage with voice RTP. I setup a packet capture on both the ingress and egress interfaces of b...

jokes54321 · 08-29-2025

Hi Toshi, I did acknowledge the recommendation suggests two FortiLinks verses one, but everyone's argument against it was specific to WAN links over FortiLink managed switches, and to use standalone instead. ChatGPT's entire argument revolved around ...

jokes54321 · 08-29-2025

Update: Toshi called me out, indicating this solution does not satisfy the OP since it uses two FortiLinks and requires extra switches, which was what I was trying to avoid when I originally posted the OP 2 years ago. Every argument against doing thi...

jokes54321 · 06-25-2025

I greatly appreciate you researching this and was really hoping this wouldn't be the case. Fortinet's argument that their approach helps manage dependencies effectively is exactly what running the scripts in order would achieve. We built the Template...

jokes54321 · 05-27-2025

It is currently setup this way now. We went ahead and set the minimum TLS to 1.2 and are monitoring the application closely.

jokes54321 · 05-22-2025

Unfortunately, this logs nothing. Here is the configuration, perhaps I missed something? I didn't enable WAF or IPS yet, but those don't seem relevant to the current issue at the moment. VIP setup config firewall vipedit "mydomainname-vip"set type se...

User Statistics

User Activity

FortiManager CLI Provisioning Template Groups

Virtual Server Report

FortiNAC Intune integration, filtering devices

Microsoft Multicast NLB on FortiSwitches managed by FortiGates

Where does packet capture fit within Life of a Packet?

Re: ISP Uplink through FortiSwitch

Re: ISP Uplink through FortiSwitch

Re: FortiManager CLI Provisioning Template Groups

Re: Virtual Server Report

Re: Virtual Server Report

Re: FortiNAC Intune integration, filtering devices

ISP Uplink through FortiSwitch

Re: Wrong DNS Server used by random clients

Re: Wrong DNS Server used by random clients

User Statistics

User Activity

You are leaving our website