All Discussions

Latest Discussions

  • Hi Pavel, I do think I am clear on what exactly you are asking then. Can you provide a network diagram of what you are referring to for clarification? Antispoofing/Reverse Path Forwarding does not drop traffic on the FortiGate when there is a valid ...

  • Profile Picture

    Quarterly Threat Report

    Posted in: Threat Intelligence

    Don't forget to download our new Quarterly Threat Report. Fortinet has a unique perspective on the threat landscape. Some key topics we cover are: Spikes in attacks at the network edge Design flaw in ad-blocking service exploited to exempt malicious ...

  • Profile Picture

    RE: FORTISANDBOX AI-MODE ACTIVATION IMPACT

    Posted in: Sandboxing

    No, there is no loss of functionality and the performance is not negatively impacted when you enable AI-Mode. The tool enhances the detection engine capabilities, improving the overall detection rates. Our internal testing has shown an improvement ...

  • Hello Mohammed. Please contact Fortinet Sales for help with this quwarion https://www.fortinet.com/how-to-buy.html Bill

  • Posted in: Sandboxing

    Hi Jim, Thank you very much. Everything work now.

  • Profile Picture

    Beware Holiday Scams

    Posted in: Threat Intelligence

    As the holiday season approaches, the Cybersecurity and Infrastructure Security Agency (CISA) released an advisory encouraging users to be aware of the potential holiday scams and malicious cyber campaigns, particularly when browsing or shopping online. ...

  • Profile Picture

    FortiGuard Threat Playbooks

    Posted in: Threat Intelligence

    Have you used our FortiGuard Threat Playbooks? Are the valuable? Did they you to help understand the threat life-cycle better? Do you have ideas you can share? https://fortiguard.com/playbook Let us know what you think! Thanks!

  • Profile Picture

    BlueKeep Attacks Starting

    Posted in: Threat Intelligence

    CVE-2019-0708, the RDP vulnerability with capabilities to be wormable, is now being exploited in the wild. If you haven't patched for this vulnerability, you should do so now. While the current attacks are not wormable, the exploit is in the eyes ...

  • Profile Picture

    RE: MC4200 Corupt Compact Flash card

    Posted in: Wireless

    Hi John Thank you for this. I have manage to get a version 6.1.25 after a long time. It seems to work, but haven't really gone through it thoroughly. I just wanted to get the wifi up and running. I will download this as a backup tho, so I can go back ...

  • Posted in: Threat Intelligence

    There is an exploit for Chrome targeting vulnerability CVE-2019-13720 active in the wild. It is a use-after-free bug, a memory corruption flaw that allows attackers to execute malicious code. We recommend you patch today. Chrome version 78.0.3904.87 ...

  • Profile Picture

    Migration plan document

    ​​Hi, I am looking for a standard template for a migration of the firewalls of HO and its many branch offices. do we have any check list or project preparation documents for planning and execution . I am Thankful if anyone can share the idea or detai ...

  • Profile Picture

    RE: SMTP Authentication with AD/LDAP

    Hi Nawir, 1. You can create recipient policy and specify smtp authentication method as LDAP. 2. Create LDAP profile and enable authentication against Zimbra server. Please see the attached screen shots. Thanks

  • Profile Picture

    Recipient Verification with Zimbra

    Hi, SW INFO: -Zimbra 8.8.15 -FortiMail VM 6.x QUESTIONS 1. How to set valid recipient in FortiMail by checking SMTP in Zimbra (not using LDAP/AD verification) anything to to change in Zimbra site? 2. by default FortiMail will reject unknown recipient. ...

  • Profile Picture

    Blocking apps and download manager

    I have 10 test in Fortigate but I don't have license. So I don't know whether with latest definition working or not QUESTIONS 1. I want to know whether Fortigate can block application like Opera Turbo, ZenMate, Psiphon3, IDM, FDM, IDA, Open Proxy, DNS ...

  • Profile Picture

    Check valid email to AD/LDAP

    GOALS: 1. FortiMail will check incoming mail with AD or LDAP. Because sometime spammer set "From: targetemail" and set invalid email, so that when bounce back will attack to targetemail 2. Block incoming mail by country QUESTIONS: 1. without Fortigate. ...

  • Yes you are right. I am asking Fortigate presenter here in Indonesia yesterday. To make consistency between product. For example grep only appear in Fortigate but not in Fortimail and any other product. This is problem when I want to search certain word ...

  • Posted in: Threat Intelligence

    Fortinet is a founding member of the Cyber Threat Alliance (CTA). The CTA is a not-for-profit organization that is working to improve the cybersecurity of our global digital ecosystem by enabling near real-time, high-quality cyber threat information ...

  • Hi, A) Is it somehow possible to have a menu selector for the correct authentication method? User goes to portal/ receives a site publish form with a selection of authentication methods (combobox or links) B) On Fortigate it is possible to have in ...

  • Hi Parick, We do not support HTML Form Based delegation. Please open a Knock ticket so we can re-open NFR380101. Best Regards Rafael ...

  • Profile Picture

    FortiGuard Labs Research Center

    Posted in: Threat Intelligence

    The FortiGuard Labs Research team participates in many conferences and workshops. In the Research Center you will find information such as slides, video presentations and related research publications. Check it out! https://fortiguard.com/events

  • Posted in: NAC & IoT Security

    Hi Sekou, Please take a look at the Hardware and VM install Guides and also the Administration guide here . https://docs.fortinet.com/product/fortinac/8.6 The FortiAuthenticator guide is located at https://docs.fortinet.com/product/fortiauthenticator/6.0 ...

  • Profile Picture

    RE: FortiSIEM Clear Conditions

    Posted in: SIEM

    Hi Mohammed, I'm afraid this isn't currently possible. Most performance and availability rules have a clear condition if that condition is met within a certain amount of time. Thanks Dan

  • Posted in: Wireless

    Hi Ole, Controller System ID/Serial number will not change as this is hardcoded into the Controller BIOS. License files should be able to be reimported or you can restore the backup which contains these. If you have done this backup? If you are running ...

  • In IP Policy and Conenction Settings there is a setting for : "Maximum concurrent connections for each client:" Out of the box it seems this was 5. We've had a couple of issues with voting software sites like ElectionBuddy and SimplyVoting where email ...

  • Profile Picture

    Training on the Threat Landscape

    Posted in: Threat Intelligence

    Want to learn more about the threat landscape and network security? Check out our free NSE 1 training course on the threat landscape. We are proud that Fortinet's Network Security Expert (NSE) Institute's certification program has been named ...

  • Profile Picture

    FortiGate VM for VMWare NSX-T

    Fortinet provides advanced security for east-west, north-south traffic flows for VMWare NSX-T. https://youtu.be/uVAZoUNqSvw YouTube FortiGate VM for VMWare NSX-T Fortinet provides advanced security for ...

  • Profile Picture

    FortiCWP 4.2 Use Case Demos

    FortiCWP helps customers mitigate risks associated with cloud computing including misconfigurations, malware data in storage, compliance reporting and suspicious activity in their cloud environments. It can help secure deployments in Microsoft Azure, ...

  • Profile Picture

    Fortinet Podcasts

    Posted in: Threat Intelligence

    Fortinet releases podcasts that highlight our security products and solutions. We also have two specific podcasts addressing threat intelligence: Security Roundtable Podcast - a quarterly podcast of Fortinet Security Experts highlighting current and ...

  • Posted in: SIEM

    Hi Kalana, This is a manual download of the license and then upload in the ForitSIEM GUI. Thanks Dan

  • Profile Picture

    Fortinet Launches FortiCWP

    Posted in: Public Cloud

    A replacement for FortiCASB-Cloud, FortiCWP is Fortinet's cloud-native Cloud Workload Protect (CWP) service. FortiCWP hooks into the APIs provided by cloud vendors including AWS, Azure and Google Cloud Platform to monitor and track all security components, ...

  • Profile Picture

    FortiCWP Overview

    Posted in: Public Cloud

    FortiCWP Overview Organizations are embracing multiple public cloud platforms, resulting in increased complexity of management which impacts security and risk. Additionally, the built-in security tools that come with various cloud platforms are ...

  • Profile Picture

    FortiADC Overview

    FortiADC Overview With bandwidth demand growing faster than budgets, and with cyberattacks constantly on the rise, it can be challenging to securely and efficiently deliver applications at the speed users expect. Fortinet Application Delivery Controller ...

  • Profile Picture

    FortiIsolator Overview

    Posted in: Browser Isolation

    FortiIsolator, Fortinet's browser isolation platform, adds an additional advanced threat protection capability to the Fortinet Security Fabric and protects critical business data from sophisticated threats out on the web. Content and files from the web ...

  • Profile Picture

    Fortinet Dynamic Cloud Security

    Posted in: Public Cloud

    Learn more: www.fortinet.com/cloud Related videos: IHS Markit Survey: Critical Insights into Today's Cloud Infrastructures: https://www.youtube.com/watch?v=ejY03... Fortinet's FortiWeb Cloud WAF-as-a-Service: https://www.youtube.com/watch?v=5fUl5... ...

  • Posted in: Public Cloud

    Learn more: www.fortinet.com/aws The FortiGate-VM on AWS delivers next-generation firewall (NGFW) capabilities for organizations of all sizes, with the flexibility to be deployed as a NGFW and/or a VPN gateway. https://youtu.be/NPDx1G5UHVw ...

  • Posted in: Threat Intelligence

    Learn more: https://www.fortinet.com/support/supp... The Fortinet Security Rating Service is intended to guide customers to design, implement and continually maintain the target Security Fabric security posture suited for their organization. The Security ...

  • Posted in: Threat Intelligence

    Learn more: https://fortiguard.com/ The Fortinet Security Fabric and solutions, which include our award-winning FortiGate next-generation firewalls and Secure SD-WAN platform, help customers stay protected against threats that put their businesses ...

  • Posted in: Secure SD-WAN

    Learn more: https://www.fortinet.com/products/sd-... In this video, learn about how customers can leverage FortiManager and FortiAnalyzer to Simplify SD-WAN branch operations. We look at 5 capabilities and 3 key benefits that customers have with ...

  • Profile Picture

    Threat Analytics

    Posted in: Threat Intelligence

    Did you know that you can find out our top 10 Virus, Exploits and Botnet's for any given day? Visit out FortiGuard.com threat analytics site: https://fortiguard.com/threat-research/threat We even break it down to show threats per vertical. Check ...

  • Posted in: Wireless

    Gartner released the 2019 Magic Quadrant for the Wired and Wireless LAN Access Infrastructure. In the most recent edition, Fortinet is again in the Niche Players Quadrant, but has been placed furthest on completeness of vision and ability to execute in ...

  • Posted in: Switching

    Gartner released the 2019 Magic Quadrant for the Wired and Wireless LAN Access Infrastructure. In the most recent edition, Fortinet is again in the Niche Players Quadrant, but has been placed furthest on completeness of vision and ability to execute in ...

  • Profile Picture

    Safetica DLP integrates with Fortinet

    Posted in: Endpoint Protection

    Hi guys, I believe Safetica is their closest DLP integration covering all endpoints. Integration of Safetica data loss prevention solution (DLP) and Fortinet security technologies provides companies with a powerful tool for the security of their data ...

  • Posted in: Secure SD-WAN

    Improve user experience and simplify operations at the WAN Edge with an integrated NGFW and SD-WAN in single offering. As the use of business-critical, cloud-based applications and tools continue to increase, distributed organizations with multiple remote ...

  • Profile Picture

    RE: Chromebook and Fortinet wifi

    Posted in: Wireless

    Hi Leif Did you make the power change noted below? Just wondering how things are going. We are also experiencing the same thing with the same one AP per classroom. FortiWLC 8.4-4build-8 | FortiWLC-3000D 822 and 832 AP Native Cell

  • Profile Picture

    RE: Remediations Acton Issue

    Posted in: SIEM

    If the Incident triggered and fired a notification then depending on the Notification Window defined in the Rule it won't trigger a notification again until either the Incident is cleared or the Notification Window expires. Suggest try clearing the Incident ...

  • Profile Picture

    RE: FortiWeb

    Posted in: SIEM

    The format needs to be the standard Key Value Pair log format. If you customise then the FortiSIEM parser may also need to be customised.

  • Profile Picture

    thread email

    does anyone experience here long thread of emails eventually tagged as spam or sent to quarantine?

  • Posted in: Public Cloud

    FortiWeb Cloud WAF-as-a-Service is a SaaS cloud-based web application firewall (WAF) that protects public cloud hosted web applications from the OWASP Top 10, zero day threats and other application layer attacks. Requiring no hardware or software FortiWeb ...

  • Posted in: Public Cloud

    More and more enterprises are turning to Microsoft Azure to extend internal data centers and take advantage of the elasticity of the public cloud. While Azure secures the infrastructure, you are responsible for protecting everything you put in it. Fortinet ...

  • Posted in: Secure SD-WAN

    Learn more on how the Fortinet Secure SD-WAN solution utilizes FortiAnalyzer and FortiManager to provide analytics and reporting for business applications, WAN health, and security. https://youtu.be/FEK0SankGH4 YouTube ...

    1 person recommends this.
  • Posted in: Secure SD-WAN

    Learn more: https://www.fortinet.com/products/sd-... Leveraging Fortinet Secure SD-WAN for cloud on-ramp to SaaS and multi-cloud improves the user experience for business applications. With integrated advance security, the enterprise branch security ...

    1 person recommends this.
  • Profile Picture

    RE: Palo Alto Firewall

    Posted in: SIEM
  • Profile Picture

    Related to SIEM Implementation Concerns

    Posted in: SIEM

    Dear Friends, I need your support to find answers/recommendations from FortiSIEM. Description Implementation Concerns Log Archival Process When restoration is required, is this happened in a bulk or can we add parameters i.e: like ...

  • Learn more on how the Fortinet Secure SD-WAN solution utilizes FortiAnalyzer and FortiManager to provide analytics and reporting for business applications, WAN health, and security. https://youtu.be/FEK0SankGH4 YouTube ...

  • Profile Picture

    FortiGuard Labs Playbooks

    Posted in: Threat Intelligence

    A playbook is a collection of the tools, techniques and procedures that cyber criminals use to achieve their goal, organized in a structured format. Our playbooks are mapped to the Mitre ATT&CK framework and represent the life cycle of a particular threat ...

  • Profile Picture

    RE: sentinelone integration

    Posted in: SIEM

    Hi Kalana, Just configure the sentinelone management console to send syslog to FortiSIEM. Either a collector or to the supervisor directly. Kind Regards, ------------------------------ Dušan Tomić - Consulting Systems Engineer INTL Fortinet ------ ...

  • Posted in: SIEM

    Hi Kalana, Yes, FortiSIEM is able to identify relayed logs, but it does expect the syslog-ng relay to prepend the standard Syslog-ng header to the log. If you go to Admin / Device Support / Parsers you will see SyslogNGParser at the top of the list. ...

  • Hi Patrick, Could you please ask you local SE to raise a case to CSE Team by providing cnfig and pcap files? Best Regards ...

  • The purpose of this video is to give a brief description for FortiAnalyzer and the use cases for FortiAnalyzer. FortiAnalyzer is Fortinet's Security Driven Analytics and Log Management Solution. FortiAnalyzer offer organizations with a way to centrally ...

  • T he purpose of this video is to give a brief description for FortiManager and the use cases for FortiManager. FortiManager is Fortinet's Next Generation Automation driven management solution. Using FortiManager, organizations can achieve scalability, ...

  • Attacks are getting more complex as the attack surface area increases. Tools for detect attacks have increased exponentially leaving many administrators confused as to how to handle breach detection. This video will help explain how to enable the IoC ...

  • What you are describing is a feature set used more commonly by ADC technologies like F5 vs. traditional WAF, but is something to take into consideration for future development efforts. NOTE: FortiADC, which competes directly with F5, supports this ...

  • Hi Patrick, TOS/WOS fields will be lost in Reverse Proxy mode. Sent from my iPhone *** Please note that this message and any attachments may contain confidential and proprietary material and information and are intended only for the use of the intended ...

  • Posted in: Threat Intelligence

    Fortinet has a unique perspective of the threat landscape. We distill that view into our quarterly threat reports. You can download and read the latest report here: https://www.fortinet.com/content/dam/fortinet/assets/threat-reports/threat-report-q2 ...

  • Profile Picture

    RE: VPN Connectivity

    Posted in: Public Cloud

    Thank you! ------------------------------ Bradley Consultant ------------------------------

  • Profile Picture

    ADVPN Route Reflector Not Working

    Posted in: Crypto VPN

    We are using ADVPN with iBGP and the routing protocol and FortiGates running 5.6.10 and 5.6.11. VPN Tunels are up, iBGP peering is up, 'route-relfector-client enable' is configured on the Hub in the 'neighbor-group' configuration section. Also, local-as ...

  • Profile Picture

    For IoT security, check out FortiNAC

    Posted in: NAC & IoT Security

    If you are looking for a solution for the issue of IoT and how to discover and identify headless devices on your network, look no further than ForitNAC. The FortiNAC solution can find and profile everything on your network, so you don't need to wonder ...

  • Hello, usually this is publicly documented here : https://docs.fortinet.com/document/fortigate/6.0.2/fortigatefortiosfeatureplatformmatrix Link Aggreation / Redundant Ports Regards

  • Profile Picture

    RE: Hardware performance analytics in FAZ

    I've had a couple of customers not having any SNMP Server inhouse prior to me getting there with the Fortigate solution. For these customers IT usually costs money and they even hesitate on buying the FAZ to start with. With some more leverage including ...

  • Profile Picture

    RE: Integration with HPE-Aruba ClearPass

    Posted in: Security Fabric
  • Profile Picture

    RE: SSLVPN using Azure AD (SAML)

    There is FortiOS NFR 505485 for implementing the SP role in FortiGate, which would allow SSO for SSL VPN users using Azure AD as the IdP. This would address your scenario without FAC. I am not sure what the status is of that NFR. We've also ...

  • Fortinet products deliver deep security with high value, exceeding typical firewall features in a feature-rich ecosystem. With so many options, it's possible to load down your system with common misconfigurations and missed maintenance. Join us for our ...

  • Fortinet products deliver deep security with high value, exceeding typical firewall features in a feature-rich ecosystem. With so many options, it's possible to load down your system with common misconfigurations and missed maintenance. Join us for our ...

  • Posted in: Endpoint Protection

    Remember Conficker and Wannacry. These threats exploit "fresh" vulnerabilities where patches were already available for at least 2-3 months and still Wreak havoc around the world. Now Microsoft is warning users not to repeat the history and we should ...

  • I believe the theoretical limit is 254 members.

  • Profile Picture

    RE: SDWAN and internet breakout

    Thanks Peter, I think that makes sense. I will give it a go.

  • Profile Picture

    RE: Best Practice

    Posted in: Deception

    Hello, May I suggest reviewing the FortiDeceptor guide ? Should you need additional technical help, please reach out to Kash (kash@fortinet.com), EMEA CSE team lead. Cheers, Damien

  • Hi, I need to block GitHub upload , i have tried to block it from web browser its working with the help of GITHUB Upload signature provided by the fortigate. But this signature is not capable of blocking upload from cmd line interface. Do anyone have ...

  • Profile Picture

    RE: Reg Gui Access

    Hi, I got your point. Configure LAN to LAN Firewall rule. It will resolve the issue. ------------------------------ Deepak Kumar First Option General Trading LLC Dubai ------------------------------

  • Profile Picture

    Welcome to the 'Deception' Forum

    Posted in: Deception

    Are you interested to learn about 'Deception'? If so, we have just added this new discussion area here on Fuse where you can ask questions or share any of your expertise around this technology. Start a conversation now! Need information? Visit the ...

  • Posted in: Sandboxing

    Hi Damien, Thank you !

  • Profile Picture

    RE: Limit OSPF advertisements

    Posted in: Crypto VPN

    Hi! Yes. You can use the command "config router access-list" via the CLI. There you can create a list, then create a route map using "config router route-map" to attach the access list you just created and finally use that route map into the routing ...

  • Profile Picture

    RE: MULTIHOMING WITH FORTIADC OR FORTIWAN

    Hello Sekou, Consider FortiADC for DC solutions where (web) services are offered towards clients from multiple sites or over multiple ISP's. FortiGate SD-WAN/Branch for the other solutions. Regards, ------------------------------ Ferry ----------- ...

  • Profile Picture

    Blank Reports

    Greetings all! I'm having an issue with a client's Fortigate 40c. I setup the FortiCloud reporting and it was working fine, however I had an issue where I restarted the unit for a disk check and it didn't come back online. After cycling the power a ...

  • Posted in: SIEM

    Hi Dan, I've already contacted my SE's and got the samples. Thank you, Norberth ------Original Message------ Hi Norberth, Best to get in contact with your local channel SE or SME for FortiSIEM and they should be able to ...

  • Profile Picture

    RE: NSE5 exams passing score

    Posted in: NSE Training

    Hello Swathi, Thank you for the information. Regards, Nuno

  • Profile Picture

    VXLAN with Multiple Subnets

    Hi, i have a setup for a Customer comprising of two Sites Site A : HQ Site B : DR we are planning to use VXLAN over IPSec VPN to Extend few subnets to DR. Subnets 192.168.1.x/24 and 192.168.12.x/24 has to be extended using VXLAN. i have tested VXLAN ...

  • Profile Picture

    RE: Recommended UTM for 80 users

    Dear, Considering only the number of Users regardless of the traffic, i would suggest a Fortigate 200E Regards Rony ------------------------------ Rony Moussa Fortinet NSE Certified: Level 8 ------------------------------

  • Profile Picture

    RE: Routing Traffic through SD-WAN

    SDWAN rules are the solution, you can specify policy routes based on applications to achieve your needs. Regards Rony ------------------------------ Rony Moussa Fortinet NSE Certified: Level 8 ------------------------------

  • Profile Picture

    RE: Will NSE2 be updated soon ?

    Posted in: NSE Training

    Kirthy, Fuse is a peer to peer community where any user can become a member and engage with other users on Fortinet and security industry topics. *** Please note that this message and any attachments may contain confidential and proprietary material ...

  • Hi, You can create an NAT IP Pool. "Policy & Object" >>IP Pool >> Select NAT Type and provide the public IP address to be NAT. The in you IPv4 policy select the NAT Pool you created for NAT option. All the traffic under the policy will use the NAT IP ...

  • Profile Picture

    RE: Policy Routing Question

    Please check out the below link for full details. https://kb.fortinet.com/kb/viewContent.do?externalId=FD31240

    1 person recommends this.
  • You can add any number of internet connection. If you have used up WAN ports you can connect it on LAN ports. The you can enable ECMP for load balancing. ------------------------------ Kirthy ------------------------------

  • Posted in: SIEM

    Hello, This howto will teach you how to import IOCs using STIX/TAXII. More specifically Malware Domains, IPs, URLs and Hashes. Kind Regards, ------------------------------ Dušan Tomić - Consulting Systems Engineer INTL Fortinet ------------------- ...

  • Posted in: Endpoint Protection

    Hello all, We are just kicking tires on fortinet products just trying to find out what level of control we might have over linux desktop users I work at a small university with a cadre of researchers and profs that use linux desktops. Of course our ...

  • Posted in: SIEM

    Hello, The attached document will show you how to enforce and validate data retention policies. Kind Regards, ------------------------------ Dušan Tomić - Consulting Systems Engineer INTL Fortinet ------------------------------

  • Posted in: SIEM

    Hi, The following guide will show you how to populate the FortiSIEM CMDB by uploading and mapping a CSV file. This is an easy way of importing CMDB objects from 3rd party solutions. Kind Regards, ------------------------------ Dušan Tomić - Consulting ...

  • Posted in: SIEM

    You may have devices we don't support out of the box, the following HOWTO explains how to pull any configuration from any device using SSH and an expect script. It uses FortiWEB as an example. Kind Regards ------------------------------ Dušan Tomić ...

  • Profile Picture

    HOWTO - Integrate VPC Flows from AWS

    Posted in: SIEM

    Hi, You may find the following howto helpful if you're trying to integrate AWS VPC flows into FortiSIEM. Kind Regards ------------------------------ Dušan Tomić - Consulting Systems Engineer INTL Fortinet ------------------------------

  • Hi, Yes, it is possible and you can configure the same without any issue. But consider that your Internet connection stability/speed and Power is not stable then it is not recommended. But My suggestion to go with a cloud-based email security gateway ...

  • Profile Picture

    RE: VPN IPSEC Routing

    Posted in: Crypto VPN

    Hi, I hope there are already configured VPN between devices as A to B and B to C. And as per your post, it is not possible a VPN between A to C. No issue: Fortigate A Changes: Add Fortigate C subnet on existing VPN (A to B) Phase 2 configuration as ...

  • Profile Picture

    fortiproxy implem

    Posted in: Secure Web Gateway

    hi moderator/admin please move my topic to the right section if this is not the right one. aside from admin guide, anyone of you here configured/implemented FortiProxy? Do you sample template on how to install in NAT or TP mode? Thank you ------------------------------ ...

  • I do not understand it yet. usually you want to have a management IP for the A/P Cluster, let's say IP .1 then this IP you want to monitor and use for all sorts of activities, such as snmp, ssh, GUI, REST API .... this .1 is moved from box to box ...

  • Profile Picture

    RE: Active Directory Integration for VPN

    Till yet, some dissertation writing services have told me that a VPN can make your data unsecure. However, still if you are looking for a directory then SoftEther Gateway VPN directory would be suitable for you. ------------------------------ Chris ...

  • Profile Picture

    RE: Report based on AD/Ldap groups

    Dear, Since AD Users/ Group are already present in raw log then you can just use filters inside report settings. Choose Filer-->User/Group and tyoe the user. You can also create custom queries using this document: https://docs.fortinet.com/uploaded/files/3499/fortianalyzer-5.2.10-dataset-reference.pdf ...

  • Profile Picture

    RE: SD WAN and NAT Problem

    Hi Rony, Thank you. I test link monitor, it can solve my problem on SDWAN and NAT problem. Now I have a new problem. I use fortigate 200E with firmware v6.0.1 build0131 (GA) to test. By default all traffic go through port13, I use policy route to force ...

  • Profile Picture

    RE: FG301E IPS mode

    Hi Deepak, Thank you for your comment and yes fail-open same as bypass traffic without inspect in case of failing. For context mode it is possible assign more than one interface for each context even if are working in cluster mode? I have ...

  • Profile Picture

    User Report

    Dears, could you please help me to create user report in fortianalizer 5.2 which contain username, ip address and full visited URL by new data set? Regards.. ------------------------------ Mohamed [LastName] [Designation] ENG [CompanyName] [City] [State] ...

  • Profile Picture

    RE: Fortigate 5.4.9 Routing Issue

    Hello. Yohann, * You have two firewall with an interface configured to be used as management service (MGMT if i'm right). Right ? ===> That's right. * Both firewalls are in same subnet for this management usage. Right ? ===> That's right. * Issue ...

  • Profile Picture

    RE: unattened upgrade of DC Agents

    I tought the same thing. In theory, this very process can be fired from the Collector Agent: it's just like the install, but with different parameters. ------------------------------ Maximiliano Kolus Rosario, Santa Fe, Argentina ---------------- ...

  • Hello, Thanks for your reply. To be honest, notepad ++ and excel, i can't anymore. :-) When i found these 3 scripts, it was really helpfull and we just have to continue this good work. Moreover, i don't succeed in my quest for adapting these to service, ...

Can you Answer These?

  • Quarterly Threat Report

    Posted in: Threat Intelligence
  • Beware Holiday Scams

    Posted in: Threat Intelligence
  • FortiGuard Threat Playbooks

    Posted in: Threat Intelligence
  • BlueKeep Attacks Starting

    Posted in: Threat Intelligence
  • Posted in: Threat Intelligence
  • Migration plan document

  • Recipient Verification with Zimbra

  • Blocking apps and download manager

  • Check valid email to AD/LDAP

  • Posted in: Threat Intelligence