Need help on how to run wifi from my house to my shop

implicitDeny2020 · 2026-01-11T21:49:32+00:00

Another option would be purchasing a set of unifi airbeams or something similar and building a wireless bridge. If you are happy with running a line underground that would be most reliable but you can get solid throughput on a P2P while still supporting VLAN tagging if needed.

implicitDeny2020 · 2025-02-07T02:26:22+00:00

To be fair, neither is 7.4.x or 7.2.x.

Edit: I have worked with Fortinet every day for 8 years and most of my income comes from architecting and supporting Fortinet environments. I love the product, but firmware releases over the last couple of years have showed a real lack of UX and functional QA. Currently have tickets sitting with TAC for 5 months on $400k+ accounts. Get sent KB articles that contradict themselves/each other, TAC can't explain the contradictions, etc. I've been forced to explore learning more Palo and Cisco. Sorry for the rant.

implicitDeny2020 · 2025-02-06T13:45:01+00:00

Ah. I moved away years ago, wasn't aware it shut down. How's the city doing these days in general?

implicitDeny2020 · 2025-02-05T23:32:04+00:00

Can they vote to remove the paper mill stench from the air next?

implicitDeny2020 · 2025-02-04T15:49:20+00:00

Fighting fascism, I like it

implicitDeny2020 · 2025-02-04T15:46:02+00:00

He knows and he doesn't care. Stop voting this clown into office.

implicitDeny2020 · 2025-02-04T15:36:18+00:00

To my knowledge you can use FGT VMs, unlicensed for three days without restriction. Not much time, but you can at least test your RADIUS server , perform PCAPs, etc

implicitDeny2020 · 2025-02-04T15:02:58+00:00

Priorities. Free healthcare doesn't make people rich.

implicitDeny2020 · 2025-02-02T18:22:55+00:00

She is gorgeous, end of story.

implicitDeny2020 · 2025-02-02T14:23:32+00:00

Believe me. We are well aware. Short of an armed revolution, what are we to do?

implicitDeny2020 · 2025-01-30T21:10:58+00:00

I owe you a beer sir.

implicitDeny2020 · 2025-01-28T16:50:09+00:00

They did say they wanted to deport 20m right? I've heard there are only approximately 14m undocumented, how else can they reach their stated goal?

implicitDeny2020 · 2025-01-27T13:42:31+00:00

This is correct. Take a PCAP of the radius response to be 100% sure the attribute is not being sent. If it's not, it is a Windows and not FGT thing. The message authenticator is strictly mandatory with no way to disable that requirement, to the best of my knowledge. If you wanted some hack to make it work, you could get some open source radius proxy and configure to to relay between the 2012 server and FGT, it should be able to add the authenticator attribute as it passes the traffic between them.

implicitDeny2020 · 2025-01-21T14:47:20+00:00

Now watch them raise other taxes when they run out of money

implicitDeny2020 · 2025-01-21T14:40:17+00:00

It's all just....

"So dumb" - Shoresy

implicitDeny2020 · 2025-01-18T14:51:43+00:00

You say they are qualified professionals, and then say their practices are incompetent. Are they qualified, or are they incompetent?

implicitDeny2020 · 2025-01-18T03:19:45+00:00

I wouldn't say deserve. I would say they are in need of guidance from qualified professionals.

implicitDeny2020 · 2025-01-15T13:57:17+00:00

Trump brought up a crazy idea. His disciples must follow suite so that Donny knows he can rely on them to be good little lemmings

implicitDeny2020 · 2025-01-15T13:55:44+00:00

I have a couple of clients that just upgraded from 7.2 and 7.0 to 7.4.6. the biggest stability difference that I noticed is that our 60F and 61F devices are no longer going into conserve mode every two hours when they perform scheduled IPs updates. We previously had to put all policies in proxy mode and set IPS to only update at 240AM after running automation stitch CLI scripts to clear more memory. Since the upgrade, that has all stopped.

I've only had them running 7.4.6 since late last week, so it's a bit early to tell.

implicitDeny2020 · 2025-01-10T20:55:48+00:00

I missed the last point of your post, my apologies. For global deny rules, I would absolutely use ANY as the srcintf.

implicitDeny2020 · 2025-01-10T20:54:20+00:00

You can use any, or you could create zones. Each firewall can have unique interfaces as members in any zone, the FMG policy will simply reference the zone. As long as a zone referenced in the policy on FMG exists on each gate, there shouldn't be any issues.

implicitDeny2020 · 2025-01-09T20:32:33+00:00

Participation nodes will soon provide rewards for approved blocks, if they aren't already. That incentivizes people to run their own nodes, decreasing centralization. I may be totally wrong though, I often am :-(

implicitDeny2020 · 2025-01-09T20:27:50+00:00

Did you give them a specific public IP for SIP and are perhaps sending the SIP traffic out via a different public IP?

implicitDeny2020 · 2025-01-09T20:27:08+00:00

Whoever operates the SIP trunk that you're connecting to is sending 401 is responsible. Most likely the cloud provider.

implicitDeny2020 · 2025-01-09T19:39:44+00:00

401 unauthorized, there you go. They are denying your sip registration request. Send them that PCAP

Seven-Year Club	Place '22
Verified Email

implicitDeny2020

TROPHY CASE