Early this week, Fortigate has removed the Upgrade Path table on the Fortigate Cookbook website gaining reaction from many of us. I spend a good number of minutes trying to look around where I can find the table I used to find in just a couple of google searches and clicks. The Upgrade Path tool … Continue reading Fortigate: New FortiOS Upgrade Path Tool
Tag: Tools
Sonicwall GVC VPN: Unable to connect to VPN. Error: “Packet length mismatch with interface MTU”
I had a client who was unable to connect to the Sonicwall VPN via GVC (Global VPN Client). Packet capture showed initial inbound traffic to the Sonicwall from Client is being dropped. Logs as below: 50 03/30/2016 14:16:06.912 X4*(i) -- VPN.CLIENT.IP.HERE SONICWALL.WAN.IP.HERE IP UDP 500,500 DROPPED 60[60] 51 03/30/2016 14:16:06.912 X4*(i) -- VPN.CLIENT.IP.HERE SONICWALL.WAN.IP.HERE IP … Continue reading Sonicwall GVC VPN: Unable to connect to VPN. Error: “Packet length mismatch with interface MTU”
Protected: Fortigate: How to monitor and block Torrent / P2P traffic?
There is no excerpt because this is a protected post.
Fortigate: Log Monitoring and Email Alerting via Fortianalyzer
Using the logs sent by your Fortigate Firewall to your Fortianalyzer, you can set up an monitoring/alerting function for any logs or events captured. This is very helpful in monitoring critical systems and functions such as interface flaps or VPN IPsec Issues. You can monitor any events as long as it is logged. In this … Continue reading Fortigate: Log Monitoring and Email Alerting via Fortianalyzer
Fortigate: Missing Features on your Fortigate Firewall?
On Fortigate 5.6 Feature Visibility (System -> Feature Visibility) allows administrator to enable/disable Firewall Features Features such as Policy Routes, RIP, OSPF, BGP, Multicast Enabled by: Basic Features -> Advanced Routing (to be populated)
Fortigate: Disabling and enabling the SIP session helper
You can use the following steps to disable the SIP session helper. You might want to disable the SIP session helper if you don’t want the FortiGate to apply NAT or other SIP session help features to SIP traffic. With the SIP session helper disabled, the FortiGate can still accept SIP sessions if they are … Continue reading Fortigate: Disabling and enabling the SIP session helper
Trick: How to copy files into Linux from Windows Machine
In Unix, you can use SCP (the scp command) to securely copy files and directories between remote hosts without starting an FTP session or logging into the remote systems explicitly. The scp command uses SSH to transfer data, so it requires a password or passphrase for authentication. Unlike rcp or FTP, scp encrypts both the … Continue reading Trick: How to copy files into Linux from Windows Machine
Fortigate: Best Practices Guide (per Topic)
This Best Practice Guideline for Fortigate is compiled from both FortiOS 5.2 and 5.4 for common issues encountered by myself and shared to everyone to ensure the most secure and reliable operation of our Fortigate units. This is updated periodically as I come across known issues and best practice recommendations. A. General Configurations Below are … Continue reading Fortigate: Best Practices Guide (per Topic)
Protected: Self Help Guide: 6Wind vRouter Turbo-Router Configuration from Scratch
There is no excerpt because this is a protected post.
SPAN Configuration Examples
Configuring Simple SPAN session Make sure the destination interface is configured with command: # switchport monitor C2950#configure terminal C2950(config)# C2950(config)#monitor session 1 source interface fastethernet 0/2 destination interface fastethernet 0/3 no shut end C2950(config)#show monitor session 1 STATE SHOULD SHOW UP. Other Configuration Examples for SPAN This section includes the following topics: Configuration Example for a … Continue reading SPAN Configuration Examples
marktugbo.com 