Hi guys, Am I correct in saying that application control (or all
security profiles for that matter) are not involved in the policy
matching process in FortiOS. Once a policy is matched via source,
destination, port or time, the security profiles of t...
Hi all, I have observed that when using the creating 2 custom services
using the same port number, the firewall will recognise that port number
globally with only one of the custom services, therefore if anything
else arrives on at a policy on that p...
Hi all, I have never actually tried to configure email filtering on the
FGT itself and was wondering if anyone had any experience in the
following: a) is it any good? b) can you use the file quarantine for AV
to quarantine emails? - if so can end use...
Hi guys, What are the advantages of having three boxes operating in HA?
Would it be more efficient to upgrade from 2 x HA firewalls running A-P
to a bigger box in HA or to add an additional box to the existing
cluster? Essentially, 1000 users behind ...
Hi, A customer has a suspicious user that is visiting inappropriate
websites during working hours - I have figured out the IP and the
customer would like to know when that IP accesses the LAN as so they can
' catch' the user. Is there a way that you ...
I have seen the issue with the appended :0 already and have raised a
ticket with Fortinet on this - I will let you know the response. I am
running 5.0.8 at the moment. So when you had both WebBrowsing AND HTTP,
did the firewall pass both, regardless ...
I would take Fortinet' s advice here. They are not saying there is a
problem with your config, just the firmware. All you would need to do is
take a backup of the config file and save it somewhere; then erase the
boot image of the firewall through CL...
I am not entirely sure what you mean but you will need to ensure that
you have policies defined to allow the traffic to flow to different
networks on your FortiGate, for example: ssl.root -> DMZ. HTH