Hi all, another vulnerability – log4j – is keeping us all on our toes.In this blog article you will find information about log4j from our vendors.
Information on Log4j Vulnerability / CVE-2021-44228
CheatSheet – FortiAnalyzer & FortiManager v7.0
We have created a combined CheatSheet for the FortiAnalyzer and FortiManager OS version 7.0. We have divided sections into FortiAnalyzer Logging, FortiAnalyzer Reporting and FortiManager to find the needed commands faster. CheatSheet FAZ FMGR 7.0 v1.2 We hope that this will contribute to quick solutions of existing problems.
Fortiguard DNS servers are enforcing EDNS policies
Some of you may have noticed that a Fortigate – configured to use the FortiGuard DNS Servers – is not resolving some DNS names anymore. Consequences can be that FQDN address objects can not be resolved or a configured mail server can not be used anymore.
Let’s Encrypt: Unexpected certificate warnings
On Mai 2021, Let’s Encrypt issued a note about the expiration of their DST Root CA X3:https://letsencrypt.org/docs/dst-root-ca-x3-expiration-september-2021/ Now that this root certificate has expired (2021-09-30), your systems might issue a warning when connecting to sites using Let’s Encrypt certificates. To fix this glitch on a general client, follow the instructions…
FortiGuard DNS Rating Server (SDNS) unavailable
Last update from 12.05.2021 at 09:40 Swiss local time: We have noticed an improvement in the situation. Some rare rating timeouts still show up from time to time, but the majority of requests are being answered correctly. Also the DNS servers are working as usual again. We have noticed an…
Fortigate und Swisscom TV – zum dritten
Unser letzter Beitrag zur Konfiguration einer Fortigate, um zuhause auch Swisscom TV durch die Fortigate zu bekommen, ist schon eine zeitlang her. Deswegen hier mal wieder ein aktueller Beitrag mit einer Fortigate auf FOS 7.0.0 (der auch mit 6.4.5 getestet wurde). Aber Vorsicht, mit dem Swisscom Centro Business oder Centro…
Exchange Hafnium Vulnerability March 2021
Let’s mention the important things first: Please patch you vulnerable Exchange 2013, 2016 and 2019 immediately! The page msxfaq has published an infosite to this vulnerability including the instructions how to fix your Exchange. Even though we, as Boll Engineering AG, are not associated in any way with the affected…
FortiClient/PaloAlto Support for Catalina – “legacy system extensions” error
Since a while, the most recent macOS versions the system do report the use of “legacy system extensions” which is often triggered by modules or plugins of low-level software like VPN Clients, AV software etc.
FortiAP and VLAN ID 97 or 98
Did you know, that on the FortiAP FAP-C24JE, the VLAN ID’s 898 and 899 are reserved for system use? Or that the FortiAP models FAP-S221E, FAP-S223E, FAP-221E, FAP-222E, FAP-223E and FAP-224E can not work with VLAN ID 97 and 98? I’m sure you already guessed it: These ID’s are reserved…
Troubleshooting FortiGate SSLVPN problems
Last Update: 31. July 2024 Configuring SSLVPN with FortiGate and FortiClient is pretty easy. Nevertheless problems may occur while establishing or using the SSLVPN connection.
