Sorry, the forums haven't been very active. Let me know how your purchase went. Work is slowing down so I have more time to follow up.
Type: Posts; User: FortinetGURU
Sorry, the forums haven't been very active. Let me know how your purchase went. Work is slowing down so I have more time to follow up.
I have seen in my client's deployments that FortiSwitches are becoming more and more prevalent. Finally, the devices are growing in reliability and feature set. Very exciting times since they mesh so...
Always welcome to share knowledge that can be beneficial!
Ivan, Thanks for the post. Sorry for the delay!
A. I would advise strongly on removing Windows XP Machines from the domain if at all possible. It has been several years since they have had patch...
Good find and thanks for the update. Did you have to disable it completely or just in relation to the files associated with the agent?
That's normal. You have to configure a management address. Remember, transparent mode treats it as an invisible device. Is this a basic network? Or on a work network? Any details about the layout of...
Excellent question, I have honestly never tried. Let me see what I can come up with.
Never thought about that. The visibility would be nice.
Ick. Something like Splunk may be more beneficial for that type of data display. It is a lot more robust in my opinion haha. But Jesus it is expensive.
Are you wanting these to display in a column based appearance or?
ABSOLUTELY haha. You can do basic scutt with the datasets they already have without knowing SQL. But if they don't provide the information you need already you are going to have to get down to the...
haha yeah. Buy a small fortivoice unit. Tie it to a cheap business phone service through your local cable provider or something. Use that to demo and test. It's worth it to know it. You never know...
I'm up in the air on voice in general (not just FortiVoice). This day and age, as a service provider, I feel it is more worth my time to use a service like phonebooth.com or some other cloud PBX...
Yeah, I'm working on a page that will be loaded down with various custom reports. I'm not the strongest at SQL etc so it is taking me some time but it should be pretty cool :-)
Awesome. So here is what I would do.
On the trusted side of the Gate create a zone called TRUSTED and make sure "block intra-zone traffic" is unchecked. Assign the interfaces that are part of the...
I would use Zones to ease your policy configuration. If you are using it strictly as a border patrol unit that would be the most straight forward.
Some questions I have to better direct you would...
Kora,
Thanks for reaching out! I have a few questions if you don't mind.
1. What version of FortiOS are you running on your 300C?
2. What version of the TS FSSO Agent are you running?
3. Has...
Nice post! Thanks for the information!
That would make me so nervous baha. Knowing my luck some weird bug would occur and nuke my environment.
You created port forwarding for ftp on the external router?
If so, you should have a policy on the gate that says
Source IP: External Address Allowed to FTP IN
Source Interface: The WAN...
I got a pretty cool presentation on the FortiWAN / FortiADC / various other techs from this family. The Fortinet stuff is progressing rapidly and I like a lot of what they are doing.
How did your testing go? The FortiManager is super powerful but definitely able to nuke a device or deployment of devices REALLY quick if you aren't careful!
The FortiMail should be able to communicate with any LDAP server as long as the authentication is properly setup.
Have you tried enabling multicast policy on the Gate and playing with your local in policies to make it work better?
Nice fix. It is annoying to have to do that but it is what it is.