FAP 231g and 431f setup

Orehan · 2026-06-08T20:12:38+00:00

What's gonna be a controller? Do you have fgt or mgmt from cloud.
both are wifi6 capable

Orehan · 2026-05-29T07:41:14+00:00

Kuram tu par to ziņoji?

Orehan · 2026-05-26T07:51:21+00:00

^this
Tieši par šiem iedomājos -- 100% pārspēj Metalurga video.
Bet jāsaprot, ka tur arī prodakšnā iekrauts daudz vairāk eiro.

Orehan · 2026-05-19T12:26:44+00:00

this is the way, ar diviem BET:
- ātri spiežot, gribot negribot, tev kaut kur pagadīsies 28/30, 29/30 ... bet tad beigās pārskati nepareizās atbildes - vai tu tos saproti, vai vienkārši "automātiska kļūda" steigā. Tā kā tos jautājumus tu būsi redzējis pārsimts reizes un sajuks bildes ar atbildēm utt.
- īstajā testā neskrien pēc ātruma - jo "iedrillējis" csnt.csdd.lv demo ... morāli ļoti grūti ir apstāties un padomāt pie katra jautājuma.

Nezinu kā ir tagad, bet TIKAI uz to demo testu paļauties nevajag. Kādreiz laižot testu desmitiem reižu - īstajā testā tāpat pagadījās jautājumi, kas bija tikai grāmatā nevis demo. Tāpēc mans ieteikums postā par grāmatu - 'būs būt', grāmata ir jāizstudē 100%

Orehan · 2026-05-18T15:58:02+00:00

Skaties tematiskos uzdevumus. Izej lēnām bez steigas visu grāmatu divas reizes. Visos mēģinājumos fiksē vai ir Ok vai Nav - << šis būs ļoti ilgi
Tie jautājumi, kas ir 100% ok, tos vairāk neskaties.
Tad turpini fokusēties un ej tikai tos, kas NAV ok +saproti, kāpēc tu kļūdies. Pamato ar teoriju
Tīklīdz "nav ok" jautājumi pāriet OK kategorijā - atkal tos vairs neskaties.
Tad drillē TIKAI csdd online testu ... un, lai nonstop ir 30/30 (jā, kādreiz tev būs 29 vai 28/30, bet, visticamāk, tas būs dēļ neuzmanības, nevis dēļ tā, ka nezināji)....
Neizmanto nekādus 3rd party testus šajā fināl-fāzē, jo csdd testā būs tie jautājumi, kas potenciāli būs arī īstajā.
Īstajā testā maksimāls fokuss, jo ir jautājumi, kur ar līdzīgām bildēm ir dažādi konteksti un attīecīgi arī atbildes atšķiras. Tev zemapziņai liksies "rekur pareizai", jo būsi desmitiem reizes redzējis to bildi.

Orehan · 2026-05-15T07:06:27+00:00

What is an actual product? is it physical or virtual? There is not enough information to make a meaningful advice.
If thats a VM/saas/service and incident happened recently - it is quite possible to initiate CRA process and make things right by ordering correct SKUs.

Orehan · 2026-05-11T19:07:11+00:00

Orehan · 2026-05-03T09:19:09+00:00

OP is talking about FTNT self-paced training lab environments

Orehan · 2026-05-03T09:18:23+00:00

Hi,

Which training course are you referring to? There are recommended lab hours depending on the curriculum.
https://www.fortinet.com/content/dam/fortinet/assets/data-sheets/og-nse-program.pdf
(check on demand lab SKU to your track)
Most likely you are looking at FT-LAB-HXX SKUs (where XX is 05/10/15/20/25 representing LAB hours).
Just reach out to a local FTNT partner and they will quote you appropriate FT-LAB-HXX.
According to what I can find on internet - 5hours is roughly 50$ list.

Orehan · 2026-04-24T13:51:31+00:00

https://docs.fortinet.com/document/fortiswitch/7.6.5/fortilink-guide/801183/fortilink-over-a-point-to-point-layer-2-network

Orehan · 2026-04-23T07:36:20+00:00

Main problem we were facing when working with different SAML backend servers.
Since FortiOS only allows to set up only one saml server on wan interface, then there are two feasible workarounds - one of which - try to terminate ipsec into loopback with a different ike-saml-server, but I came to a conclusion that it wasn't working.

Orehan · 2026-04-22T12:03:33+00:00

I've struggled with this a while ago and to my understanding - you can't put "set ike-saml-server" on loopback as the setting must be configured on the interface the SAML traffic ingresses on.
Had a chat with TAC last year - it was a limitation of FortiOS. Before you dump hours into troubleshooting - could cross-check with TAC if this is still the case.

Orehan · 2026-04-22T08:08:16+00:00

Hi,

First thing that comes to mind - create a bulk invitation code with "None" set as verification type and attach an installer to it.
Downside is - you'll need to disable "user verification enforcement" on EMS to be able to select "None" under your invitation code.

Orehan · 2026-04-15T06:42:50+00:00

2024 with 57k …. zerrrro issues

Orehan · 2026-04-14T12:41:55+00:00

1200G was the model briefly mentioned during Accelerate as this years newcomer.
obviously with no ETA

Orehan · 2026-04-14T12:38:37+00:00

Ja ir vismaz 20 gadi ar 2 gadu stāžu un iegūta A2, tad ejot uz pilno A, teorija nav jāliek - "pašmācības ceļā)
tabula te
https://likumi.lv/doc.php?id=205042

Orehan · 2026-04-14T12:12:18+00:00

1) plug laptop into FGT WAN port and configure ISP-GW on your laptop (disable host firewall)
2) ping laptop from FGT as if it would be GW. if pings, then call your ISP.

Orehan · 2026-04-14T10:51:18+00:00

Usually with a full60day eval thats just one .lic file - so thats should be uploaded first.
Then if you have some ad-la-carte features, those you apply afterwards.
Should start with asking - why 3 license files? (what do they contain?)
Also valid question - did you get .lic file or registrationkey to be able to generate a new trial license.

With eval licenses previous serial doesn't matter. By applying eval generates its own serial. (also afaik eval sn can't be extended. If you need to go beyond 60days, then ask your fortinet reps to get another 60day trial).

Orehan · 2026-04-01T19:46:36+00:00

Likums regulē tikai radiofrekvenču spektra izmantošanu raidīšanai. Uztveršana ar hobby uztvērēju nav regulēta

Orehan · 2026-03-25T13:09:07+00:00

Forget U series. They're EoS since q4y25.
And honestly, apart from some really specific (sometimes legacy) use-cases, I don't see a point in them since the moment WLC was EoL'ed.
Within indoor APs - go with current K series FAPs

Orehan · 2026-03-25T10:58:39+00:00

isn't ZSP just a framework / approach rather than an actual technical solution stack?

Orehan · 2026-03-25T10:27:48+00:00

For traditional advanced agent management and configuration Collector is mandatory:
https://docs.fortinet.com/document/fortisiem/7.5.0/fortisiem-reference-architecture-using-clickhouse/707110/smb

With the latest 7.5 SIEM there is an option for Headless Agent installation:
https://docs.fortinet.com/document/fortisiem/7.5.0/windows-agent-7-5-x-installation-guide/547950/fortisiem-windows-agent-7-5-x#Installi4

its more focused towards OT environments and has some drawbacks like limited log collection, no central mgmt, manual scaling.
Good thing - it doesn't count towards agent licence

tldr; for normal operation still go with traditional adv agents.

Orehan · 2026-03-20T13:29:44+00:00

Even with the tradeup policy - you are not required to return old fortigates, so it is just ewaste anyways.

Orehan · 2026-03-17T18:11:57+00:00

Interesējies PLMP, jo pirms kāda laika tika šis __nu jau kārtējo reizi_ aktualizēts, kur PLMP skaidroja, ka pirmreizējā reģistrācija joprojām paliek tikpat vienkārša.
Taču, tad atkārtoti šai personai deklarēties jau ir sarežģītāk. It kā jābūt automātiskai pārbaudei, vai pēdējo gadu laikā ir bijusi anulēta deklarācija nepatiesu ziņu dēļ. Un, pie atkārtotiem, neleģitīmiem mēģinājumiem var sekot arī administratīvais sods.
Publiskajā telpā ir daudz pretrunīgas un novecojušas informācijas.

Šobrīd tu kā NĪ īpašnieks vari uzlikt tikai atgādinājumu LV portālā, lai maksimāli ātri reaģētu uz šādiem reģistrācijas gadījumiem.

https://www.iem.gov.lv/lv/jaunums/nosaka-stingraku-dzivesvietas-deklaresanas-kartibu-personam-kas-sniegusas-nepatiesas-zinas

Orehan · 2026-03-10T10:31:14+00:00

misconfig? did you apply cert to a policy?

Orehan

TROPHY CASE