In this article, we want to point out some indicators used to determine if your FortiGate is under attack.
Is Your FortiGate Under Attack?
FortiGate with FortiOS 7.4: First Configuration Steps
Last update: 11. October 2024 In our daily support work we often see FortiGates in use on which the basic settings like time zone, host name and so on have never been set correctly. Therefore we would like to provide you with a small guide on this page, with which…
Remediation Steps if your FortiGate got Hacked or Attacked
… or accessed from any unauthorized party. In some cases it’s not even necessary to hack a system to gain access to it. For example it may be enough to leak a configuration file to allow unauthorized system access. Fortunately, many cases of a suspected hack turn out to be…
PaloAltoNetworks Tech Article: How to Connect vsys Directly
I recently came across the requirement to connect two vsys on a NGFW appliance. Let’s assume we have two vsys, vsys1 and vsys2. One way is to use a network cable to connect a port in vsys1 to a port in vsys2 in terms of hardware. However, there is another…
Enhancing firewall security with Kaspersky Threat Feeds – My first steps
Motivation As a distributor we offer various security products from different vendors. On the one hand these are FortiGate and PaloAltoNetworks NGFW firewalls to make the perimeter more secure, on the other hand products & services from Kaspersky. Kaspersky offers various threat feeds that can be used in other products….
Exchange OnPrem and Add-Ins from the Office Store
Recently, I had the challenge of rolling out an Outlook add-in in an Exchange 2016 environment. In the past, this used to be straightforward task in the Exchange Control Panel (Organization → Add-ins → Add from the Office Store).
How to configure the FortiGate for a 3CX UC system with SIP trunk
3CX is a very widespread UC solution (phone system or also known as PBX). FortiGate is a very widespread firewall solution. Both of the products are very good in doing their thing. But to work together, a littlebit of configuration work is needed. Below you can find an example configuration…
FortiGate: Deny-Policies for SD-WAN members
SD-WAN is a cool feature to configure redundant internet access. But it was designed with load-balancing in mind and this brings some challenges to specific use cases. As an example, while you can use SD-WAN rules to define the preferred path for a specific application/system, it won’t prevent that the…
How to upgrade a FortiClient EMS free-, trial- or evaluation-license
FortiClient EMS is a central endpoint management solution from Fortinet. There are three possible license types and it is not always possible to change the license state between different license types. This article will bring light into the dark of FortiClient EMS license upgrading. Free trial license A free trial…
CVE-2022-40684 – Fortinet: Authentication bypass on administrative interface (HTTP/HTTPS) (English)
German Version: CVE-2022-40684 – Fortinet Authentication bypass on administrative interface (HTTP/HTTPS) (Deutsch) You have certainly (and hopefully) read the information on the published Fortigate administration access vulnerability and applied the appropriate patches. We have compiled all the information again here for your convenience.
