In this article, we want to point out some indicators used to determine if your FortiGate is under attack.
Is Your FortiGate Under Attack?
FortiGate with FortiOS 7.4: First Configuration Steps
Last update: 11. October 2024 In our daily support work we often see FortiGates in use on which the basic settings like time zone, host name and so on have never been set correctly. Therefore we would like to provide you with a small guide on this page, with which…
Remediation Steps if your FortiGate got Hacked or Attacked
… or accessed from any unauthorized party. In some cases it’s not even necessary to hack a system to gain access to it. For example it may be enough to leak a configuration file to allow unauthorized system access. Fortunately, many cases of a suspected hack turn out to be…
Crucial Information for FortiGate Admins: Transition to FortiOS 7.4.4 and the Discontinuation of Proxy-Based Features on Devices with 2GB of RAM or less
In a significant move by Fortinet, the upcoming FortiOS version 7.4.4 introduces a pivotal change affecting numerous FortiGate devices. Users planning to upgrade need to be aware of the substantial shift from proxy-based features, which will no longer be supported under this new firmware version.
Webserver are Suddenly not Reachable Anymore due to TLS 1.3 Hybridized Kyber Support
In the last days we have had several support cases that suspiciously all had the same error description: many web servers can no longer be reached with the Chrome or Edge browser. In our cases typically the Webfilter feature from one of our firewalls has been involved. Right now we…
FortiGate Memory and CPU Troubleshooting
From time to time we face performance problems on FortiGate units in our daily support life. Most often the impacts of performance problems on the FortiGate are not typical. Or let’s say “not as an admin that is not familiar with FortiGates would expect”. The expectations vary from high delay…
CheatSheet FortiOS v7.4
We are happy to present you the new cheat sheet for FortiOS version 7.4.If you have an idea for the cheat sheet, please let us know in the comments. (Update to v1.1, July 30th, 2024) We wish you good luck with troubleshooting.
FortiGate throughput troubleshooting
Limited throughput on network devices is a common problem. We handle a lot of cases with thtroughput issues and have written a guide on how we recommend to start troubleshooting in such cases.
CVE-2023-27997 – FortiOS & FortiProxy – Heap buffer overflow in sslvpn pre-authentication
Please note the vulnerabilities in Fortinet products published in June. In particular, we would like to mention the vulnerability in FortiOS, which affects SSLVPN access and poses a major threat with a CVSSv3 score of 9.2. Fortinet PSIRT: https://www.fortiguard.com/psirt/FG-IR-23-097CVE: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-27997 Affected are FortiOS versions 6.0 to 7.2. Fortinet has already…
Top 10 FortiGate mistakes we see in our daily support life
According to this title you are expecting some click-bait content, right? Nope. We’re still the Boll Engineering Tech team here… The configuration inputs below are problems we face frequently in our daily support life. Also some of the points mentioned below are frequently asked questions that pop up during our…
