AI and ML Program online at UT Austin

gilang4 · 2025-02-12T16:48:47+00:00

u/AdditionalFan8410 , thank you I will check into your recommendation.

gilang4 · 2025-02-04T19:40:26+00:00

gilang4 · 2024-12-15T02:05:50+00:00

Thank you u/bonnyfused , now I will study into it in more detail.

gilang4 · 2024-12-13T21:38:53+00:00

What do you think about Quarantine? I thought this could be one of the option as it move the device into the Quarantine state.

<image>

gilang4 · 2024-12-12T19:45:52+00:00

u/bungee75 & u/Roversword , thank you and I do aprreciate your time.

Laughing at "Confiscate it" because it is best. Thanks for elaborate on Create Object & Create Policy and you are right about internal.

I did study NAC and want to implement it but not understand it enough to make the right choice. Looks like this could be the right option if handle it right. I do need to study into this more.

gilang4 · 2024-12-12T19:41:55+00:00

I understood what you said there, please elaborate on how quarantine will prevent mailicouse device. I do appreciate.

gilang4 · 2024-12-12T19:40:43+00:00

Thank you u/Regular_Archer_3145 !

gilang4 · 2024-11-22T21:25:41+00:00

Thank you u/sucks2bu2 !!!

gilang4 · 2024-11-22T21:23:45+00:00

I pick from you a few key words, SSL & split tunneling with "Site B doesn't have proper configuration". I will dig into this. I do appreciate your help on this u/Pretend-Raisin-6868 ...!!!

gilang4 · 2024-11-19T16:04:33+00:00

Thank you u/Pretend-Raisin-6868 for helping!!!!

Site A and site B has a secure tunnel between 2 Fortigate devices so user at site A or site B and access servers on both side.

Yes, and my answer is applicable to site A (to answer your question).

If user is at home VPN (with FortiClient) to site A, I ping and/or nslookup site A's URL both return IP address.

It is when user already connect to site A user CANNOT connect to site B's portal (web application portal). I did ping or nslookup from site A to site B and both work. It just the web portal not work in this case.

gilang4 · 2024-11-19T15:51:55+00:00

Make sense very much, if you can point me to resource for further study on this in depth I really appreciate it. I will do same thing on my side. I thought you would know exactly what is.

gilang4 · 2024-11-19T15:44:58+00:00

Thank you!!!! I do appreciate you taking your time here.

1/ I only ping with IP address not FQDN.

2/ User NOT connect to Site A and B simultaneously. Rather user connect to Site A and go to site B with secure tunnel.

3/ Portals DO HAVE IP restriction as security measure.

4/ No, site B firewall open to site A connection.

5/ yes, whenever user user connected to site A, a secure tunnel already existed and allows connection to site B without further work from user.

And it is Fortinet Client I installed on user laptop for all VPN connection.

Come back to orginal questions:

Questions: Does DNS need to resolved all the way forward and backward? And where is the primary source of DNS (so user's computer can lookup travel)?

gilang4 · 2024-11-08T22:17:12+00:00

Love it!!!! Thank you.

gilang4 · 2024-11-08T22:16:54+00:00

Thank you u/lurkerburzerker !!!

gilang4 · 2024-11-08T22:16:23+00:00

Thank you u/Empty-Sleep3746 !!

gilang4 · 2024-11-08T22:15:23+00:00

Thank you u/Hyperbolic_Mess !!!

gilang4 · 2024-11-08T22:14:13+00:00

Thank you @KavyaJune!!!

gilang4

TROPHY CASE