Some of you may have noticed that a Fortigate – configured to use the FortiGuard DNS Servers – is not resolving some DNS names anymore. Consequences can be that FQDN address objects can not be resolved or a configured mail server can not be used anymore.
Today WatchGuard launched a new page where you can see the status of WatchGuard Cloud Services. https://status.watchguard.com/ For each region, you’ll find the current status separated by products and the major features that WatchGuard provides. Every line has a simple status indicator to communicate its condition:
On Mai 2021, Let’s Encrypt issued a note about the expiration of their DST Root CA X3:https://letsencrypt.org/docs/dst-root-ca-x3-expiration-september-2021/ Now that this root certificate has expired (2021-09-30), your systems might issue a warning when connecting to sites using Let’s Encrypt certificates. To fix this glitch on a general client, follow the instructions…
For some reasons Fortigates are are not able to load the FortiGuard DDNS server list. Therefore you are not able to configure DynDNS on your Fortigate anymore. In the WebUI you will see following error message under Network > DNS > FortiGuard DDNS and you are not able to list…
Last Update: 31.07.2024 Since last week, we observed a lot of failed SSL-VPN login events on various FortiGate setups. (Edit: That was back in August of 2021 and the big “scanning” ended around two weeks after it has started. But messages are still shown from time to time, since scanning…
In der Schweiz wurde in den letzten Jahren ein immer grösseres Augenmerk auch von politischer und staatlicher Seite auf die Cybersicherheit gelegt. So wurden die zuständigen Stellen reorganisiert und ausgebaut. Ebenfalls haben die zuständigen Stellen online Präsenzen mit vielen nützlichen Informationen geschaffen. Wir möchten euch hier die wichtigsten Info-Seiten, welche…
FortiWeb v6.4 starts to support the integration with Let’s Encrypt. This allows you to automatically generate server certificates alleviating the need to upload private certificates. The administration guide gives you some information on how to request those Let’s Encrypt certificates but in our opinion the configuration guidelines are not sufficient….
Some providers (like init7.ch which already uses the Swisscom XGS-PON) do encapsulate their PPPoE traffic into a VLAN Tag (802.1Q or Q-Tagged). The reason for this is, that in the majority of the cases the provider is using a layer 2 network (last mile) of another provider, which uses VLAN…
Netzwerk & Security Administratoren kennen die Problematik. Um Zugriff auf eine serielle Konsole zu bekommen, benötigt es einen Adapter, da kaum mehr ein Notebook einen alten DB9 (DE-9) Anschluss hat. Kein Hersteller liefert aber ein USB Konsolen-kabel direkt auf RJ45 Ports, welche heute bei praktisch allen Netzwerk & Security Devices…
If you want to configure rules for Saas services on the PaloAlto Firewall, you can do this using the App ID for the particular service, or you can use the IP addresses, Domains or URLs of the service in the policy. However, since Saas services typically do not use only…
Sind Sie interessiert, den BOLL Blog als RSS Feed zu abonnieren?