Re: Blocking of known malicious IP is not working...

mpapisetty · 04-07-2025

Description This article describes a situation where a FortiManager is deployed in an air-gapped network, and the user cannot view the latest IPS signatures. Scope For FortiManager deployments in air-gapped environments where direct access to FortiGu...

mpapisetty · 02-06-2025

Description This article describes the troubleshooting process when a scheduled backup of FortiPortal does not work due to no access to download docker images. Scope FortiPortal v7.x. Solution Most users deploy FortiPortal without any access to the i...

mpapisetty · 12-17-2024

Description This article describes how to view IPS signature details using FortiManager. There are times when security administrators must deep dive into a particular IPS alert to know why a signature got triggered. In such scenarios, viewing the IPS...

mpapisetty · 08-15-2024

Description This article describes that FortiAnalyzer comes with physical disk drives that are configured in RAID. The RAID controller runs a scheduled consistency check on all the RAID arrays to ensure that all data is consistent. This check general...

mpapisetty · 02-19-2025

Hi @MohammedYasin - Please be aware of the PSIRT that was published after my last comment - https://www.fortiguard.com/psirt/FG-IR-24-535 - and take actions accordingly.

mpapisetty · 01-19-2025

I did not quite understand what you mean by "1:1" policy entries. The more specific subnets and granular policies come at the top and the broader ones flow below them. So, your specific subnet LAN users will be at the top and will have their 1:1 bloc...

mpapisetty · 01-15-2025

Hi @okllee , If you have a FortiManager, I would recommend using the consistency check tool that can help clean up your firewall policies - https://docs.fortinet.com/document/fortimanager/7.6.2/administration-guide/233367/perform-a-policy-consistency...

mpapisetty · 01-12-2025

Hi @JimBo , Thanks for the clarification. I agree that JSConsole is a powerful tool. For admin access, there is no way to configure a policy based on application. The only way to restrict access is to have local in policies that can limit the IPs and...

mpapisetty · 01-12-2025

Hi @HANDL_Eric , The understanding is correct. The firewall will match the 5 tuple entry and then look at the UTM part of the policy. Having said that, you could have multiple application signatures within one profile. For instance, if you have the T...

User Statistics

User Activity

Troubleshooting Tip: Unable to view latest IPS Signatures on an airgap FortiManager deployment

Troubleshooting Tip: FortiPortal Scheduled Backup not working due to docker access

Technical Tip: View IPS Signature details using FortiManager

Technical Tip: Impact of RAID Consistency Check on FortiAnalyzer Hardware Models

Re: JSconsole access to Fortigate

Re: Application Policy Blocking

Re: Best practices to review configuration and rules for fortigate firewall and fortiweb

Re: JSconsole access to Fortigate

Re: Application Policy Blocking

Re: Blocking of known malicious IP is not working...

Re: submit / upload file via JSON API Call

Re: what is compromised host by verdict

Re: How to Block Source IP when detect port scan f...

Re: Unable to Register FortiNDR-Sensor with FortiN...

Re: JSconsole access to Fortigate

Re: whitelist proofpoint

Re: FortiManager (7.4.6) no longer prepends policy...

Re: DHCP Server IP hide from guest connection

Re: Fortimanager: Verify state: install OK/verify...

KCS

User Statistics

User Activity

You are leaving our website