Re: FortiNAC deployment

AEK · 05-06-2024

Hi FortiGate adminsI have two hosts interconnected via a third party IPsec, separated by a FortiGate.When I use no-inspection in the FG's firewall policy I have the tunnel comes up and working fine.When I use certificate inspection it doesn't come up...

AEK · 05-02-2024

Hi FortiMail integratorsWhat are the "recommended" method(s) to migrate a configuration from FML hardware to FML VM?

AEK · 04-29-2024

Hi FortiWeb adminsWhen I create a user group on FortiWeb 6.3.x from RADIUS I can't specify which RADIUS group. It means the group contains all RADIUS users.Is it a limitation of 6.3.x or did I miss something?

AEK · 04-28-2024

Hello FortiAuthenticator adminsI try configure my Cisco switch C3750 to send RADIUS requests to 1812 but it doesn't keep it, the config remains sending on port 1645, I don't know why, probably old firmware, and upgrade is not an option.Since this is ...

AEK · 04-28-2024

Hello FortiGate adminsOn FortiWeb appliance I can see all protected attack signatures with description and full details, but I can't find such list on FortiGate's WAF and anywhere on docs.fortinet.com.Anyone knows if it is documented somewhere?

AEK · 05-07-2024

Hi @Daniyal007 As you know ForiWeb is WAF/reverse proxy. Your server doesn't need to reach internet through FortiWeb. If the default GW for your server is the firewall then just add a firewall rule in you firewall to allow your server access the publ...

AEK · 05-07-2024

No worries, it means it is "all", so @AnthonyH is right about the cosmetic issue, the logging is enabled but GUI simply doesn't show that it is enabled.

AEK · 05-07-2024

I mean edit the affected policy first:config firewall policy edit XX show full | grep logtraffic

AEK · 05-07-2024

What you see when you edit the policy and type "show full | grep logtraffic"?

AEK · 05-07-2024

You need a firewall policy. But you said that doing NAT allows it, so I think you already have this firewall rule, since NAT doesn't exempt you from adding the rule.

User Statistics

User Activity

IPsec phase1 negotiation failes due to certificate inspection

FortiMail config migration

FortiWeb RADIUS group

Cisco switch and FortiAuthenticator RADIUS port 1645

WAF signatures

Re: Allowing Internet Traffic for backend servers in fortiweb

Re: How to enable a "Log violation traffic" in DENY policy

Re: How to enable a "Log violation traffic" in DENY policy

Re: How to enable a "Log violation traffic" in DENY policy

Re: DNS for SSL VPN

Re: FortiNAC deployment

Re: Fortinac Agent Not Active

Re: Inter VLAN routing

Re: Firewall or Anti Virus.

Re: FortiNAC - Profiling Static IP Devices

Re: Forti High Availability using different hardwa...

Re: Recipient Verification

Re: How to configure the icons inPredefined Intern...

Re: Fortimail - Edit bulk Banned Words list via Cl...

Re: FortiSiem FSM-2000F the external collector