I have several RFC1918 subnets on various interfaces of my Fortigate. My
Fortigate is advertising info OSPF a default route. This is causing my
internal routers to pass up traffic to unused subnets (like
192.168.200.0/24) to the Fortigate. The Fortig...
Right now, in order to add a passive interface to OSPF I need to
enumerate all of the existing passive interfaces, plus the new one. Am I
missing an easier way, perhaps a passive-interface-default or
passive-interface-default-except option? Example: ...
Running on Version 3 MR7 Is there a way to tell an interface that its
maximum bandwidth is not the same as its Layer 1 speed and duplex
setting? Our service provider gives us a link of 20 Mbps that is rate
limited on their equipment. I would like to ...
Hi all. We' re in the middle of a security audit, and I' ve been asked a
couple of questions that I need some help with. 1) How long will an open
TCP session stay open on the fortigate if there is no traffic flowing
through it? 2) How can I view/set ...
crank up the verbosity on the packet sniffing and check to see if you'
re getting duplicate packets. You' ll see that the ICMP sequence number
is the same in the case of duplicate packets. --------------
http://kb.fortinet.com/kb/microsites/microsite...
Thanks ede_pfau. This is what I wanted, and what I figured that I needed
to do. I was just looking to see how anyone else was doing it. I ended
up blocking the routes by way of firewall policy to ensure that it would
show up in the GUI. I figure that...
Internal Routers speak OSPF with Fortigate. Fortigate has a default
route configured to the Internet. All internal routes are advertised
into OSPF. At this point, if you look at a routing table you' ll see
entries for all of your internal networks an...
We don' t have any outside... But we' ve just got a static 0.0.0.0
pointing to the Internet. That default route will send out all unknown
destinations (including RFC1918) to the next hop, regardless of if it is
private or not.