DNS resolution over IPsec/SSL VPN on Fortigate

Description This article provides basic troubleshooting to follow when you are not able to access hostname over IPSec VPN tunnel or SSLVPN connection Solution   If you are not able to access resources across VPN tunnel by hostname, check following steps: (1)  Make sure to set DNS server properly when configuring SSL or IPsec VPN.  … Continue reading DNS resolution over IPsec/SSL VPN on Fortigate

Meraki Wifi Best Practice for multiple APs: Bridge Mode

Bridge Mode In bridge mode, the Meraki APs act as bridges, allowing wireless clients to obtain their IP addresses from an upstream DHCP server. Bridge mode should be enabled when any of the following is true: Wired and wireless clients in the network need to reach each other (e.g., a wireless laptop needs to discover … Continue reading Meraki Wifi Best Practice for multiple APs: Bridge Mode

Meraki Wifi Best Practice for single AP: NAT Mode with Meraki DHCP

Below is the recommended setup for sites with single AP. There is a known issue with this setup for sites having multiple APs, particularly with user experience as one user moves from one AP to another. There is totally no handover from one AP to another as the user devices is NAT'd per AP,  so … Continue reading Meraki Wifi Best Practice for single AP: NAT Mode with Meraki DHCP

Issue: Android users cannot connect to Wireless on Cisco Meraki APs

This article is to be used as a short reference guide on how to manually set up a WPA2-Enterprise with RADIUS Authentication (IEEE 802.1X) wireless profile on Android devices. This profile will allow the client devices to connect to the SSIDs configured with WPA2-Enterprise with 802.1X authentication as the association requirement. 1. At the home page, navigate … Continue reading Issue: Android users cannot connect to Wireless on Cisco Meraki APs

Important FortiGate CLI commands (HA and Sessions)

FortiGate High Availability Cluster CLI commands: Manage the specified FortiGate unit (X ist the unit number): execute ha manage X Set the current ForitGate Unit as master: diag sys ha set-as-master enable Get HA Status: get system ha status   FortiGate Session commands: Get all Sessions: diag sys session list Filter Sessions: diagnose sys session … Continue reading Important FortiGate CLI commands (HA and Sessions)

Cisco Switch Selector / Model Finder Tool

Few days ago, I shared a link for HPE Switch Selector / Model Finder tool, to help finding an appropriate HPE switch model based on your requirement. My client preferred a Cisco, so I have to find an appropriate Cisco model for them and found a similar tool to that of HPE. https://www.cisco.com/c/dam/assets/prod/switches/cisco-switch-selector-how-to/index.html#/ Check it … Continue reading Cisco Switch Selector / Model Finder Tool

Gartner’s 2017 Magic Quadrant for Unified Threat Management (SMB Multifunction Firewalls) Released

  Here is an overview of the leaders in Unified Threat Management (UTM) for 2017. The quadrant is based on the vendor's ability to execute and the completeness of vision.  For 8th straight year, Fortinet is recognized as the market leader in UTMs. To learn more about Gartner's complete view of the UTM market, register for … Continue reading Gartner’s 2017 Magic Quadrant for Unified Threat Management (SMB Multifunction Firewalls) Released

Tricks: Steps to Fix the Cisco VPN 412 Error

Cisco VPN Error 412 for Legacy VPN Client v5.0.0.07   Reason 412. The remote peer is no longer responding". Means that the software VPN Client detected that the VPN server is not responding anymore and deleted the connection. It can be anything from IPSEC traffic being blocked by your upstream device, NAT Issues or simply misconfigured VPN Settings: Once … Continue reading Tricks: Steps to Fix the Cisco VPN 412 Error

HPE Switch Selector / Model Finder Tool

While looking around for a switch model for one of my clients, I found an interesting page to find an appropriate HPE switch model based on your requirement of Routing/Switching, Port Type, Uplink SPeed, Features (POE, etc) http://h17007.www1.hpe.com/us/en/networking/products/switches/switch-selector.aspx#.WWNRFOn-uM8 Check it out! There is a similar tool too available for Cisco.