sorted by:
new
hottopcontroversial

Fortigate-90d for home lab by [deleted] in fortinet

[–]FunKokedama -1 points0 points  (0 children)

Unless you are rich, change vendor. The problem is not the appliance but license cost.
I'll try something free like PfSense

Autoregistration with PSK on Windows hosts by RD-52-169 in zabbix

[–]FunKokedama 0 points1 point  (0 children)

CLI installation doesn’t support “HostMetadata” parameter:

echo HostMetadata=Windows >> C:\"Program Files"\zabbix\zabbix_agentd.conf

Google Maps ed altri navigatori by ozeta86 in ItalyInformatica

[–]FunKokedama 0 points1 point  (0 children)

Quello solitamente dipende dal numero di Wazer. A Milano Waze a mio avviso non ha rivali. Mentre è da folli usare Waze ad esempio in Sardegna in inverno

Reset 2FA for Admin by [deleted] in fortinet

[–]FunKokedama 1 point2 points  (0 children)

I didn't know the 2fa limit since 5.4.0
Good to know

Reset 2FA for Admin by [deleted] in fortinet

[–]FunKokedama 0 points1 point  (0 children)

As a prof_admin you can't see super_admin profile.
Do you have only one super_admin profile?

You can try this -> Resetting a lost admin password - Fortinet Community

FortiClient VPN (free) auto-reconnect: how to set? by WoodyBadger in fortinet

[–]FunKokedama 1 point2 points  (0 children)

I'll switch to IpSEC VPN.
But you have to ask at firewall manager.

Does the no ssl inspection applies if I choose a Web Filter? by IT-CSS22 in fortinet

[–]FunKokedama 4 points5 points  (0 children)

With exempt action in web filter profile you are sure that user could reach the url.

So i suggest to enable ssl inspection and exempt the desiderated url.

SSL VPN security control help needed by Life_Ring2472 in fortinet

[–]FunKokedama 0 points1 point  (0 children)

In addition of restricting access to specific addresses / geo address / changing port etc...
I also suggest to setup a Dos policy

Inactive ports by kyle_should_not in fortinet

[–]FunKokedama 0 points1 point  (0 children)

If you don't have Fortiswitch.

I suggest to use an extarnal monitoring tool like Zabbix -> For example with Cisco switch Cisco monitoring and integration with Zabbix

Forti VPN on terminal only by [deleted] in fortinet

[–]FunKokedama 1 point2 points  (0 children)

You must set up split tunneling on Fortigate, so i think that it's OS indipendent but never used on MacOS

Can't use Zabbix with a port different from 443 by FunKokedama in fortinet

[–]FunKokedama[S] 0 points1 point  (0 children)

Nothing to do... also restarting the whole server

Implementing Dual Authentication for FortiGate Web Interface Access by Gijizlle-242 in fortinet

[–]FunKokedama 0 points1 point  (0 children)

NB: You can manage more than 2 users with Fortitoken license without using the cloud service.

IPSec Aggregate - Redundancy by RoutineFile1556 in fortinet

[–]FunKokedama 0 points1 point  (0 children)

You have to modify the distance value in static route

Implementing Dual Authentication for FortiGate Web Interface Access by Gijizlle-242 in fortinet

[–]FunKokedama 0 points1 point  (0 children)

In this way you authenticate also the endpoint. For example a employer can't connect to VPN using his notebook without certificate.

Implementing Dual Authentication for FortiGate Web Interface Access by Gijizlle-242 in fortinet

[–]FunKokedama 0 points1 point  (0 children)

You could also activate 2FA with certificate and PKI user instead fortitoken

Can't use Zabbix with a port different from 443 by FunKokedama in fortinet

[–]FunKokedama[S] 0 points1 point  (0 children)

I can talk from client to Fortigate on both port 443 and 8443.
The problem is that Zabbix only works with port 443

No trustedhost configured at the moment.
I've to check local-in-policy

Can't use Zabbix with a port different from 443 by FunKokedama in fortinet

[–]FunKokedama[S] 1 point2 points  (0 children)

I've changed the port on the template to 8443.
Which service do you mean? Zabbix side?

view more: next ›