New FortiGate Vulnerability – CVE-2022-42475

Today Fortinet has published a new critical vulnerability in their FortiGate products. A successful attack allows arbitrary code or commands to be executed. The problem exist in the SSLVPN module – and you might be vulnerable if you are using SSLVPN and not running the latest patch release of the…

 945 total views,  14 views today

read more

CheatSheet FortiOS v7.2

We are happy to present you the new cheat sheet for FortiOS version 7.2. Most commands have remained the same.A bigger change is that the Packet Sniffer and the Debug Flow are now also available in the WebUI under Network > Diagnostics. We wish you good luck with troubleshooting.  848 total…

 848 total views,  6 views today

read more

Remediation steps for FG-IR-22-377 / CVE-2022-40684

Fortinet has released information about PSIRT FG-IR-22-377, also known as CVE-2022-40684. Following we have a collection of remediation steps to take if your FortiGate has been breached. We have documented some information about this vulnerability in this blog article. We will update this post as soon as new evolvements are…

 972 total views,  3 views today

read more

FortiGate VM License Troubleshooting

When you setup a new FortiGate VM, sometimes the licensing process is not working as expected. To simplify the process of licensing a FortiGate VM for you, we have created this guide. Let’s first have a look into the licensing process on the FortiGate VM, before we discuss the Troubleshooting….

 3,628 total views,  17 views today

read more

FortiOS 7.0 and above not updating signature databases

Sometimes it happens, that FortiOS is not updating it’s antivirus signatures anymore. The monitoring software, a monitoring script or a very attentive administrator is then reporting this problem to the FortiGate admin to fix it. This guide will lead you through the steps to troubleshoot this.  1,990 total views,  16 views today

 1,990 total views,  16 views today

read more

FortiGate Mailversand mit Absender

Auf dem FortiGate können für Features wie Benachrichtigungen zur Security Fabric, Token Provisionierung, Gastaccounts oder Alerts Informationen per E-Mail versendet werden. Standardmässig werden diese E-Mails über den Fortinet eigenen Mailserver für Benachrichtigungen versendet. Es besteht jedoch auch die Möglichkeit, einen eigenen Mailserver und sogar einen selbst bestimmten Absender zu verwenden….

 569 total views,  1 views today

read more

Fortigate: L2TP over IPsec configuration needs to be manually updated after upgrading from 6.4.x or 7.0.x

Fortinet has added a special note in the release notes of FortiOS 7.0 as follow: Source:https://docs.fortinet.com/document/fortigate/7.0.6/fortios-release-notes/927994/l2tp-over-ipsec-configuration-needs-to-be-manually-updated-after-upgrading-from-6-4-x-or-7-0-0-to-7-0-1-and-later Unfortunately the second point does not clearly state which policy exactly needs to be changed.Here is a screenshot of the changed policy: As you can see, the policy from the l2tp client to the…

 1,200 total views,  5 views today

read more