General Discussions

Expand all | Collapse all

Is there any possibility to bypass Fortinet?

  • 1.  Is there any possibility to bypass Fortinet?

    Posted 16 days ago
    Hello all

    Can anyone tell me that is there any possibility to bypass Fortinet?

    Help appreciated.


  • 2.  RE: Is there any possibility to bypass Fortinet?

    Posted 16 days ago
    Hello

    The easiest way to turn around a firewall is with 'client-side' attacks. If the computer on the protected side of the firewall gives a valid connection to the attacker, there is nothing to trigger the normal firewall rule. For example, if FireWald makes an HTTP connection on a computer port 80 to a website designed to hijack browser (or Java) vulnerability, Fortinet is less likely to be detected as malicious: Web traffic through the web port. 
    Upon stepping into the network, the attacker may set up encrypted tunnels through the firewall in the ports allowed, which is another type of 'bypass'.
    On the subject of direct firewall attacks, There are tools to find out how the firewall is configured for different ports. With this information, traffic can be configured to go through the firewall. 
    At the simplest level, split packets are effective without triggering various firewall and IPS root sets because there is not enough data in each packet. The firewall must be configured to store the entire broken packet set prior to inspection.

    Hope you got the answer.


  • 3.  RE: Is there any possibility to bypass Fortinet?

    Posted 10 days ago

    Hi Zaid,

    It's not recommended to bypass FortiGate but if it's for testing purpose, you can ask your ISP to provide you with /30 IP address range (two IP addresses) so one Ip in their end and second IP you set your laptop with static IP address then you can test any service on that new connection.

    So, this will be only one PC is not protected in your environment.



    Regards
    IT Tech 2020