tag:blogger.com,1999:blog-1532920267188739518Wed, 23 May 2012 08:50:49 +0000debugfortigateconfiguration examplesapplication controlCLIfortiwebfortigate-onefortianalyzerfortiswitchfortidbipsecdon't try this at homepotential bugsdynamic routingospftips+trickslinksaccess listsfortiosguifortivmnew featuresfortiscanfortimailtroubleshootingVPNforticarrierfirmware updatessoftwarefortiapshortcutstotally obvious thingsforticlientperformanceexperimentalreviewfortimanageripv6hardwareSSL VPNinterface modeA real world resource for Fortinet firewalls including How-Tos and Frequently Asked Questionshttp://firewallguru.blogspot.com/noreply@blogger.com (Sebastian)Blogger153125http://creativecommons.org/licenses/by-nc-sa/3.0/tag:blogger.com,1999:blog-1532920267188739518.post-308494664667498699Sat, 19 May 2012 02:23:00 +00002012-05-18T21:23:28.754-05:00So yes, I switched jobs which is why this blog has been a little quiet. At my new employer we are about to replace Cisco ASAs with a UTM solution. While I understand that most people that read this blog work with Fortinet I'm also looking to solicit some real world feedback from anyone out there who has used both Fortinet and Palo Alto Network boxes. I'm not looking for "Fortinet is better http://feedproxy.google.com/~r/FirewallGuru/~3/ivQWyNKV8g8/fortinet-vs-palo-alto-networks.htmlnoreply@blogger.com (Sebastian)6<div class="feedflare"> <a href="http://feeds.feedburner.com/~ff/FirewallGuru?a=ivQWyNKV8g8:AfvnKRpN6bA:yIl2AUoC8zA"><img src="http://feeds.feedburner.com/~ff/FirewallGuru?d=yIl2AUoC8zA" border="0"></img></a> </div><img src="http://feeds.feedburner.com/~r/FirewallGuru/~4/ivQWyNKV8g8" height="1" width="1"/>http://firewallguru.blogspot.com/2012/05/fortinet-vs-palo-alto-networks.htmltag:blogger.com,1999:blog-1532920267188739518.post-1505549987576048670Mon, 27 Feb 2012 21:20:00 +00002012-02-27T15:20:50.972-06:00Jim Cramer of Mad Money fame gives his take on Fortinet. http://video.cnbc.com/gallery/?video=3000072520http://feedproxy.google.com/~r/FirewallGuru/~3/eAwVPzZ-Mt0/jim-cramer-on-fortinet.htmlnoreply@blogger.com (Sebastian)0<div class="feedflare"> <a href="http://feeds.feedburner.com/~ff/FirewallGuru?a=eAwVPzZ-Mt0:Qis3nl-rWEQ:yIl2AUoC8zA"><img src="http://feeds.feedburner.com/~ff/FirewallGuru?d=yIl2AUoC8zA" border="0"></img></a> </div><img src="http://feeds.feedburner.com/~r/FirewallGuru/~4/eAwVPzZ-Mt0" height="1" width="1"/>http://firewallguru.blogspot.com/2012/02/jim-cramer-on-fortinet.htmltag:blogger.com,1999:blog-1532920267188739518.post-6447605002593089437Tue, 14 Feb 2012 20:56:00 +00002012-02-14T14:57:26.667-06:00One of the things to keep in mind is that annual support costs (A/V, IDS/IPS updates, hardware maintenance) are based around the list price of the hardware itself. When the time comes to renew your Fortinet support take a close look at how much money you're spending on support versus the cost of newer, faster hardware. I was amazed to see that for the same cost of renewing support on a Fortigatehttp://feedproxy.google.com/~r/FirewallGuru/~3/PLfXGrh-jZc/renewing-support-versus-new-hardware.htmlnoreply@blogger.com (Sebastian)2<div class="feedflare"> <a href="http://feeds.feedburner.com/~ff/FirewallGuru?a=PLfXGrh-jZc:pENabt8n21A:yIl2AUoC8zA"><img src="http://feeds.feedburner.com/~ff/FirewallGuru?d=yIl2AUoC8zA" border="0"></img></a> </div><img src="http://feeds.feedburner.com/~r/FirewallGuru/~4/PLfXGrh-jZc" height="1" width="1"/>http://firewallguru.blogspot.com/2012/02/renewing-support-versus-new-hardware.htmltag:blogger.com,1999:blog-1532920267188739518.post-943371323598185479Tue, 24 Jan 2012 20:12:00 +00002012-01-24T14:12:23.164-06:00After upgrading several firewalls to 4.0 MR3 I noticed that by default the logs are no longer sent to my FortiAnalyzer unit in realtime. Instead they are scheduled to upload to the FAZ once per day. If, like me, you are relying on these logs to provide realtime visibility into your network here is how to turn realtime logging back on. On the CLI (really, Fortinet??):   config log fortianalyzer http://feedproxy.google.com/~r/FirewallGuru/~3/vCWNr8VWGgg/log-uploads-in-realtime-fortios-40-mr3.htmlnoreply@blogger.com (Sebastian)3<div class="feedflare"> <a href="http://feeds.feedburner.com/~ff/FirewallGuru?a=vCWNr8VWGgg:AZJex5iOo34:yIl2AUoC8zA"><img src="http://feeds.feedburner.com/~ff/FirewallGuru?d=yIl2AUoC8zA" border="0"></img></a> </div><img src="http://feeds.feedburner.com/~r/FirewallGuru/~4/vCWNr8VWGgg" height="1" width="1"/>http://firewallguru.blogspot.com/2012/01/log-uploads-in-realtime-fortios-40-mr3.htmltag:blogger.com,1999:blog-1532920267188739518.post-6046566932428555415Fri, 20 Jan 2012 19:30:00 +00002012-01-20T13:30:46.040-06:00I recently started noticing that when I try to add objects, policies, etc to one of our firewalls I receive an error dialog of "The cmdb add entry failed." After doing some research on the knowledge base the most likely explanation was related to memory utilization on the Fortigate. There are a number of ways to resolve the problem, although they are all temporary until Fortinet comes up with a http://feedproxy.google.com/~r/FirewallGuru/~3/xVya95iqBuY/cmdb-add-entry-failed.htmlnoreply@blogger.com (Sebastian)7<div class="feedflare"> <a href="http://feeds.feedburner.com/~ff/FirewallGuru?a=xVya95iqBuY:mmd2Frnj7uk:yIl2AUoC8zA"><img src="http://feeds.feedburner.com/~ff/FirewallGuru?d=yIl2AUoC8zA" border="0"></img></a> </div><img src="http://feeds.feedburner.com/~r/FirewallGuru/~4/xVya95iqBuY" height="1" width="1"/>http://firewallguru.blogspot.com/2012/01/cmdb-add-entry-failed.htmltag:blogger.com,1999:blog-1532920267188739518.post-7197806842534389825Fri, 21 Oct 2011 15:53:00 +00002011-10-21T10:53:21.118-05:00tips+tricksGot any burning Fortinet questions you want to ask? Post them in the comments and our panel of knowledgeable Fortinet users will try to answer them.http://feedproxy.google.com/~r/FirewallGuru/~3/_tqievh9JOQ/questions-for-eggspehrts.htmlnoreply@blogger.com (Sebastian)59<div class="feedflare"> <a href="http://feeds.feedburner.com/~ff/FirewallGuru?a=_tqievh9JOQ:O-ruWPowOfI:yIl2AUoC8zA"><img src="http://feeds.feedburner.com/~ff/FirewallGuru?d=yIl2AUoC8zA" border="0"></img></a> </div><img src="http://feeds.feedburner.com/~r/FirewallGuru/~4/_tqievh9JOQ" height="1" width="1"/>http://firewallguru.blogspot.com/2011/10/questions-for-eggspehrts.htmltag:blogger.com,1999:blog-1532920267188739518.post-9196926548733682767Thu, 22 Sep 2011 16:05:00 +00002011-09-22T11:05:22.887-05:00firmware updatespotential bugsfortiosThis was released earlier in the week. I installed it on my FortiWifi 60C and it caused my firewall to no longer respond to ARP requests, thus making it invisible to my network. Rolling back to 4.0 MR2 Patch 8 fixed the problem. I then re-installed MR3 Patch 2 via tftp as a clean install and had the same problem as before with no ARP responses. Let me know what you find on other platforms.http://feedproxy.google.com/~r/FirewallGuru/~3/w6dpeLYYFfQ/fortios-40-mr3-patch-2-problems-on.htmlnoreply@blogger.com (Sebastian)14<div class="feedflare"> <a href="http://feeds.feedburner.com/~ff/FirewallGuru?a=w6dpeLYYFfQ:Oa4TAst_wfo:yIl2AUoC8zA"><img src="http://feeds.feedburner.com/~ff/FirewallGuru?d=yIl2AUoC8zA" border="0"></img></a> </div><img src="http://feeds.feedburner.com/~r/FirewallGuru/~4/w6dpeLYYFfQ" height="1" width="1"/>http://firewallguru.blogspot.com/2011/09/fortios-40-mr3-patch-2-problems-on.htmltag:blogger.com,1999:blog-1532920267188739518.post-876642760511960001Mon, 15 Aug 2011 20:03:00 +00002011-08-15T15:03:42.031-05:00troubleshootingfortigateCLI(Thanks to M00sebyte for kicking me in the rear and having me restart posting now that things have calmed down) If you run into problems with your firewall CPU running unexpectedly high there are a couple of things you can do to diagnose the problem before engaging Fortinet Support. First of all try to understand which process is causing the problem. In order to narrow it down issue the http://feedproxy.google.com/~r/FirewallGuru/~3/pK5gRCBgiFo/ips-tidbits.htmlnoreply@blogger.com (Sebastian)3<div class="feedflare"> <a href="http://feeds.feedburner.com/~ff/FirewallGuru?a=pK5gRCBgiFo:60EffJ_XvRk:yIl2AUoC8zA"><img src="http://feeds.feedburner.com/~ff/FirewallGuru?d=yIl2AUoC8zA" border="0"></img></a> </div><img src="http://feeds.feedburner.com/~r/FirewallGuru/~4/pK5gRCBgiFo" height="1" width="1"/>http://firewallguru.blogspot.com/2011/08/ips-tidbits.htmltag:blogger.com,1999:blog-1532920267188739518.post-9174816729067334660Tue, 19 Jul 2011 19:37:00 +00002011-07-19T14:38:14.520-05:00troubleshootingtips+tricksCLIOn the CLI try this > diag hardware deviceinfo nic "interface name" for example > diag hardware deviceinfo nic wan1 produces the following sample output. Very handy to check for duplex mismatches, collisions, errors, etc in a pinch. Driver Name: NP2 Version: 0.92 Chip Revision: 2 BoardSN: N/A Module Name: 310B DDR Size: 256 MB Bootstrap ID: 11 PCIX-64bit-@133MHz bus: 03:01.0 Admin: up Link:http://feedproxy.google.com/~r/FirewallGuru/~3/jGfK-RbPCbo/useful-interface-statistics.htmlnoreply@blogger.com (Sebastian)1<div class="feedflare"> <a href="http://feeds.feedburner.com/~ff/FirewallGuru?a=jGfK-RbPCbo:Lwzpw0_4OHo:yIl2AUoC8zA"><img src="http://feeds.feedburner.com/~ff/FirewallGuru?d=yIl2AUoC8zA" border="0"></img></a> </div><img src="http://feeds.feedburner.com/~r/FirewallGuru/~4/jGfK-RbPCbo" height="1" width="1"/>http://firewallguru.blogspot.com/2011/07/useful-interface-statistics.htmltag:blogger.com,1999:blog-1532920267188739518.post-7375831297439509118Tue, 05 Jul 2011 17:27:00 +00002011-07-05T12:27:59.095-05:00softwarefortiosSummary of Enhancements · BGP AS Overrides · Central Management Locking/Unloking · Control and Mitigate Traffic Bypassing SSL Proxy · Convert Web UI Language Files To Be UTF-8 Standard · Enlarge Table Size for Firewall Address and Firewall Service on High-End Models · FMC-C20 and FMC-F20 Support · FortiClient Connect Licensing Support · FSSO Sniffer Policy Support · Geographic Destinations http://feedproxy.google.com/~r/FirewallGuru/~3/8kK5tKBvI8A/software-updates-fortios-40-mr3-patch-1.htmlnoreply@blogger.com (Sebastian)12<div class="feedflare"> <a href="http://feeds.feedburner.com/~ff/FirewallGuru?a=8kK5tKBvI8A:BZUWB6JG5Hw:yIl2AUoC8zA"><img src="http://feeds.feedburner.com/~ff/FirewallGuru?d=yIl2AUoC8zA" border="0"></img></a> </div><img src="http://feeds.feedburner.com/~r/FirewallGuru/~4/8kK5tKBvI8A" height="1" width="1"/>http://firewallguru.blogspot.com/2011/07/software-updates-fortios-40-mr3-patch-1.htmltag:blogger.com,1999:blog-1532920267188739518.post-4743572688754717415Wed, 08 Jun 2011 19:24:00 +00002011-06-08T14:24:56.617-05:00Busy, busy, busy. Will post again soon.http://feedproxy.google.com/~r/FirewallGuru/~3/pH_TSl5-b_4/this-space-left-blank-intentionally.htmlnoreply@blogger.com (Sebastian)1<div class="feedflare"> <a href="http://feeds.feedburner.com/~ff/FirewallGuru?a=pH_TSl5-b_4:dwEI7akh5fM:yIl2AUoC8zA"><img src="http://feeds.feedburner.com/~ff/FirewallGuru?d=yIl2AUoC8zA" border="0"></img></a> </div><img src="http://feeds.feedburner.com/~r/FirewallGuru/~4/pH_TSl5-b_4" height="1" width="1"/>http://firewallguru.blogspot.com/2011/06/this-space-left-blank-intentionally.htmltag:blogger.com,1999:blog-1532920267188739518.post-3482669779129514844Thu, 14 Apr 2011 16:47:00 +00002011-04-14T11:47:30.057-05:00totally obvious thingsHmm .. turn on AV and IPS and you're protected. Who would have thought? :) http://blog.fortinet.com/fortinet-responds-to-nss-labs-public-firewall-test/http://feedproxy.google.com/~r/FirewallGuru/~3/P_7JTF15MuI/fortinets-response-to-nss-labs-public.htmlnoreply@blogger.com (Sebastian)0<div class="feedflare"> <a href="http://feeds.feedburner.com/~ff/FirewallGuru?a=P_7JTF15MuI:yVinAgb9j30:yIl2AUoC8zA"><img src="http://feeds.feedburner.com/~ff/FirewallGuru?d=yIl2AUoC8zA" border="0"></img></a> </div><img src="http://feeds.feedburner.com/~r/FirewallGuru/~4/P_7JTF15MuI" height="1" width="1"/>http://firewallguru.blogspot.com/2011/04/fortinets-response-to-nss-labs-public.htmltag:blogger.com,1999:blog-1532920267188739518.post-3080138391439089040Thu, 07 Apr 2011 19:26:00 +00002011-04-07T14:26:12.671-05:00firmware updatessoftwareHere's the latest and greatest. FortiAnalyzer: 4.0 MR2 Patch 3, Build 221 FortiAP: 4.0 MR3 GA, Build 212 FortiClient: 4.0 MR 2 Patch 3, Build 271 FortiDB: 4.2.1, Build 113 FortiOS: 4.0 MR1 Patch 9, Build 213 (stable, recommended for production) FortiOS: 4.0 MR2 Patch 5, Build 315 (stable, recommended for production) FortiOS: 4.0 MR3 GA, Build 441 (recommended for test systems only) http://feedproxy.google.com/~r/FirewallGuru/~3/3SAbyygghEY/software-updates.htmlnoreply@blogger.com (Sebastian)2<div class="feedflare"> <a href="http://feeds.feedburner.com/~ff/FirewallGuru?a=3SAbyygghEY:1hfdCbQpEUI:yIl2AUoC8zA"><img src="http://feeds.feedburner.com/~ff/FirewallGuru?d=yIl2AUoC8zA" border="0"></img></a> </div><img src="http://feeds.feedburner.com/~r/FirewallGuru/~4/3SAbyygghEY" height="1" width="1"/>http://firewallguru.blogspot.com/2011/04/software-updates.htmltag:blogger.com,1999:blog-1532920267188739518.post-6203771933253019242Fri, 25 Mar 2011 17:06:00 +00002011-05-06T10:47:33.525-05:00potential bugsfortigateWe confirmed with Fortinet today that a bug that was fixed in 4.1.6 apparently exists in 4.2.x. It is scheduled to be fixed (again) in 4.2.6. Here is the original problem from March 2010. It's not a good thing that this was fixed a year ago and is still around in newer builds of the 4.2 branch. http://firewallguru.blogspot.com/2010/03/http-av-scanning-breaking-web.html ** Update ** Due to http://feedproxy.google.com/~r/FirewallGuru/~3/yFeuWLk3MIU/http-av-scanning-breaks-web-requests.htmlnoreply@blogger.com (Sebastian)11<div class="feedflare"> <a href="http://feeds.feedburner.com/~ff/FirewallGuru?a=yFeuWLk3MIU:gvhGeAl-dvM:yIl2AUoC8zA"><img src="http://feeds.feedburner.com/~ff/FirewallGuru?d=yIl2AUoC8zA" border="0"></img></a> </div><img src="http://feeds.feedburner.com/~r/FirewallGuru/~4/yFeuWLk3MIU" height="1" width="1"/>http://firewallguru.blogspot.com/2011/03/http-av-scanning-breaks-web-requests.htmltag:blogger.com,1999:blog-1532920267188739518.post-3503366266733767334Wed, 23 Mar 2011 15:06:00 +00002011-03-23T10:06:22.776-05:00fortiosfortigateHere's a link to the FortiOS handbook. More in-depth explanation of new features in 4.3. Very cool stuff. http://docs.fortinet.com/fgt/handbook/html/wwhelp/wwhimpl/js/html/wwhelp.htmhttp://feedproxy.google.com/~r/FirewallGuru/~3/0waQRqOu7BI/fortios-43-more-info.htmlnoreply@blogger.com (Sebastian)1<div class="feedflare"> <a href="http://feeds.feedburner.com/~ff/FirewallGuru?a=0waQRqOu7BI:FDWIwKj0BVk:yIl2AUoC8zA"><img src="http://feeds.feedburner.com/~ff/FirewallGuru?d=yIl2AUoC8zA" border="0"></img></a> </div><img src="http://feeds.feedburner.com/~r/FirewallGuru/~4/0waQRqOu7BI" height="1" width="1"/>http://firewallguru.blogspot.com/2011/03/fortios-43-more-info.htmltag:blogger.com,1999:blog-1532920267188739518.post-4730160696324011445Mon, 21 Mar 2011 21:22:00 +00002011-03-21T16:22:31.390-05:00softwarefortiosfortigateHere is Fortinet's official list of new and improved features. As with any major new release the recommendation is to not run this on critical production systems but instead give the community some time to work out some of the early bugs with Fortinet. · Supports "Local In" Policies to and from the FortiGate · Introduces Unified AV Engine · Supports Configuration Object Tagging · Introduces http://feedproxy.google.com/~r/FirewallGuru/~3/NUX-Vw58xRs/enhancements-in-fortios-43-aka-40-mr3.htmlnoreply@blogger.com (Sebastian)4<div class="feedflare"> <a href="http://feeds.feedburner.com/~ff/FirewallGuru?a=NUX-Vw58xRs:f-dax5F07qs:yIl2AUoC8zA"><img src="http://feeds.feedburner.com/~ff/FirewallGuru?d=yIl2AUoC8zA" border="0"></img></a> </div><img src="http://feeds.feedburner.com/~r/FirewallGuru/~4/NUX-Vw58xRs" height="1" width="1"/>http://firewallguru.blogspot.com/2011/03/enhancements-in-fortios-43-aka-40-mr3.htmltag:blogger.com,1999:blog-1532920267188739518.post-2183360530359126365Sat, 19 Mar 2011 18:47:00 +00002011-03-19T13:48:04.427-05:00softwarefortiosfortigateFortiOS 4.0 MR3 GA was released on Friday. As soon as it shows up on the FTP site it'll get a good kicking of the tires. Stay tuned for initial reviews and new features.http://feedproxy.google.com/~r/FirewallGuru/~3/bfESFmkiJ38/fortios-43-released.htmlnoreply@blogger.com (Sebastian)7<div class="feedflare"> <a href="http://feeds.feedburner.com/~ff/FirewallGuru?a=bfESFmkiJ38:PARwpVhUnxs:yIl2AUoC8zA"><img src="http://feeds.feedburner.com/~ff/FirewallGuru?d=yIl2AUoC8zA" border="0"></img></a> </div><img src="http://feeds.feedburner.com/~r/FirewallGuru/~4/bfESFmkiJ38" height="1" width="1"/>http://firewallguru.blogspot.com/2011/03/fortios-43-released.htmltag:blogger.com,1999:blog-1532920267188739518.post-4641461491875412873Fri, 04 Mar 2011 21:48:00 +00002011-03-04T15:50:00.593-06:00fortiosfortigateWe have had 4.2.4 running on some of our test systems for the past 24 hours with no adverse affects. Specifically CPU usage is staying within normal levels. I will also test this on the FWF 60C platform over the weekend. Please post your feedback after you try it out.http://feedproxy.google.com/~r/FirewallGuru/~3/OCpC5ic0iV4/fortios-424-released.htmlnoreply@blogger.com (Sebastian)8<div class="feedflare"> <a href="http://feeds.feedburner.com/~ff/FirewallGuru?a=OCpC5ic0iV4:3KpMlhyEXTI:yIl2AUoC8zA"><img src="http://feeds.feedburner.com/~ff/FirewallGuru?d=yIl2AUoC8zA" border="0"></img></a> </div><img src="http://feeds.feedburner.com/~r/FirewallGuru/~4/OCpC5ic0iV4" height="1" width="1"/>http://firewallguru.blogspot.com/2011/03/fortios-424-released.htmltag:blogger.com,1999:blog-1532920267188739518.post-5164483603860664630Wed, 19 Jan 2011 15:51:00 +00002011-01-19T09:51:40.866-06:00potential bugsfortiosThis was just released. I very quickly started to receive feedback about high CPU utilization problems for the 60C build also. You may want to stick with 4.2.2 for now.http://feedproxy.google.com/~r/FirewallGuru/~3/ULpet46lPS0/fortios-423-for-fgfwf-60c.htmlnoreply@blogger.com (Sebastian)6<div class="feedflare"> <a href="http://feeds.feedburner.com/~ff/FirewallGuru?a=ULpet46lPS0:ZRvnkNkRses:yIl2AUoC8zA"><img src="http://feeds.feedburner.com/~ff/FirewallGuru?d=yIl2AUoC8zA" border="0"></img></a> </div><img src="http://feeds.feedburner.com/~r/FirewallGuru/~4/ULpet46lPS0" height="1" width="1"/>http://firewallguru.blogspot.com/2011/01/fortios-423-for-fgfwf-60c.htmltag:blogger.com,1999:blog-1532920267188739518.post-4089154188259780372Sun, 26 Dec 2010 01:08:00 +00002010-12-25T19:08:34.214-06:00Happy holidays everybody!!http://feedproxy.google.com/~r/FirewallGuru/~3/ibDfEaUmblM/merry-xmas.htmlnoreply@blogger.com (Sebastian)0<div class="feedflare"> <a href="http://feeds.feedburner.com/~ff/FirewallGuru?a=ibDfEaUmblM:BvNjSXZlIhM:yIl2AUoC8zA"><img src="http://feeds.feedburner.com/~ff/FirewallGuru?d=yIl2AUoC8zA" border="0"></img></a> </div><img src="http://feeds.feedburner.com/~r/FirewallGuru/~4/ibDfEaUmblM" height="1" width="1"/>http://firewallguru.blogspot.com/2010/12/merry-xmas.htmltag:blogger.com,1999:blog-1532920267188739518.post-4808538448435865982Thu, 23 Dec 2010 18:42:00 +00002010-12-23T12:42:11.182-06:00troubleshootingpotential bugsfortigateIn my experience, as well as other people who post to the Fortinet forums the 4.2.3 patch causes significant problems when accessing websites. The reason for this appears to be the IPS engine. Disabling IPS on a firewall rule restores normal speed, however you lose IPS functionality which is of course not desirable. Stay tune for updates on this one.http://feedproxy.google.com/~r/FirewallGuru/~3/vQfFLtwSRJ0/fortios-40-mr2-patch-3-issues.htmlnoreply@blogger.com (Sebastian)7<div class="feedflare"> <a href="http://feeds.feedburner.com/~ff/FirewallGuru?a=vQfFLtwSRJ0:1l4yeSJXk9o:yIl2AUoC8zA"><img src="http://feeds.feedburner.com/~ff/FirewallGuru?d=yIl2AUoC8zA" border="0"></img></a> </div><img src="http://feeds.feedburner.com/~r/FirewallGuru/~4/vQfFLtwSRJ0" height="1" width="1"/>http://firewallguru.blogspot.com/2010/12/fortios-40-mr2-patch-3-issues.htmltag:blogger.com,1999:blog-1532920267188739518.post-7397673074859394602Tue, 21 Dec 2010 21:21:00 +00002010-12-21T15:21:41.018-06:00ipv6fortigateCLIconfiguration examplesHave you been dying (like me) to get your hands dirty and head down the information highway in all of its IPv6 glory? Ever wondered if Google REALLY looks different when viewed via IPv6? ;) Here is a quick walkthrough on how to get started even if your ISP does not provide IPv6 natively yet. Register for an account with an IPv6 Tunnel Broker. I am using Hurricane Electric. Sign-up for a free http://feedproxy.google.com/~r/FirewallGuru/~3/BRJZR6z3RHU/its-ipv6-world-get-out-there-and.htmlnoreply@blogger.com (Sebastian)4<div class="feedflare"> <a href="http://feeds.feedburner.com/~ff/FirewallGuru?a=BRJZR6z3RHU:wKdJneFjqes:yIl2AUoC8zA"><img src="http://feeds.feedburner.com/~ff/FirewallGuru?d=yIl2AUoC8zA" border="0"></img></a> </div><img src="http://feeds.feedburner.com/~r/FirewallGuru/~4/BRJZR6z3RHU" height="1" width="1"/>http://firewallguru.blogspot.com/2010/12/its-ipv6-world-get-out-there-and.htmltag:blogger.com,1999:blog-1532920267188739518.post-1621062322997935619Fri, 17 Dec 2010 21:01:00 +00002010-12-22T14:19:30.130-06:00fortianalyzersoftwarefortigateWow, long time no post :) FortiOS 4.0 MR2 Patch 3, Build 303 FortiAnalyzer 4.0 MR2 Patch 3, Build 221 It seems like the FG/FWF60C are still having issues as the release for this new platform is still behind just like last time.http://feedproxy.google.com/~r/FirewallGuru/~3/X2Im_9NokjY/software-updates.htmlnoreply@blogger.com (Sebastian)3<div class="feedflare"> <a href="http://feeds.feedburner.com/~ff/FirewallGuru?a=X2Im_9NokjY:fMPhfvnv_WA:yIl2AUoC8zA"><img src="http://feeds.feedburner.com/~ff/FirewallGuru?d=yIl2AUoC8zA" border="0"></img></a> </div><img src="http://feeds.feedburner.com/~r/FirewallGuru/~4/X2Im_9NokjY" height="1" width="1"/>http://firewallguru.blogspot.com/2010/12/software-updates.htmltag:blogger.com,1999:blog-1532920267188739518.post-512364858169427739Tue, 26 Oct 2010 17:08:00 +00002010-10-26T12:08:39.712-05:00troubleshootingfortiosfortigateAfter running the FortiWifi 60C with 4.0 MR2 Patch 2 for some time it appears there are still a number of bugs which need to be ironed out. Netflix becomes unreachable at random intervals Shoutcast streaming radio stations on a Sonos audio system become unreachable Replacing the 60C with my trusty FortiWifi 50B resolved the problem. So while there is now a 4.0 MR2 release for the 60C I would http://feedproxy.google.com/~r/FirewallGuru/~3/O7zKbYEX3YQ/fortigate-60c-update-40-mr2-p2.htmlnoreply@blogger.com (Sebastian)12<div class="feedflare"> <a href="http://feeds.feedburner.com/~ff/FirewallGuru?a=O7zKbYEX3YQ:qisv7yYDSg4:yIl2AUoC8zA"><img src="http://feeds.feedburner.com/~ff/FirewallGuru?d=yIl2AUoC8zA" border="0"></img></a> </div><img src="http://feeds.feedburner.com/~r/FirewallGuru/~4/O7zKbYEX3YQ" height="1" width="1"/>http://firewallguru.blogspot.com/2010/10/fortigate-60c-update-40-mr2-p2.htmltag:blogger.com,1999:blog-1532920267188739518.post-9121867065430175608Wed, 20 Oct 2010 02:43:00 +00002010-10-19T21:46:16.314-05:00softwaretips+tricksOk, not strictly Fortinet related but worth a mention. And read on to find out how to win an iPod shuffle. The folks at Kera Networks (i.e. me :) have developed a cool appliance/VM solution which helps you distribute UDP data across multiple devices. How is this useful you say? Glad you asked. Assume a hypothetical scenario like this: You have a large number of firewalls/routers/other devices http://feedproxy.google.com/~r/FirewallGuru/~3/bFb737d88gg/uflow-director-like-it-on-facebook-and.htmlnoreply@blogger.com (Sebastian)0<div class="feedflare"> <a href="http://feeds.feedburner.com/~ff/FirewallGuru?a=bFb737d88gg:tVpHoR_UL_I:yIl2AUoC8zA"><img src="http://feeds.feedburner.com/~ff/FirewallGuru?d=yIl2AUoC8zA" border="0"></img></a> </div><img src="http://feeds.feedburner.com/~r/FirewallGuru/~4/bFb737d88gg" height="1" width="1"/>http://firewallguru.blogspot.com/2010/10/uflow-director-like-it-on-facebook-and.html