Do not use sFlow in Fortigate - use Netflow instead I was approached last month by 2 unrelated Fortigate admins with the same problem - slow performance of otherwise very beafy Fortigate models. After some digging in the configuration the culprit was found - there was enabled on WAN interface sFlow. sflow collects …

Be it to learn the interface or preparing for NSE 5, 6, 7 exams, having the access to the real device is the best way to retain the information. Fortinet make available online access to all of their products for demo purposes, all for free. If not mentioned otherwise, the …

Table of Contents Introduction Steps in transferring the tokens Steps in transferring the tokens with screenshots Open a ticket to the Customer Service Once CS in the ticket confirm the license was transferred Debug Resources Introduction You may need to transfer Mobile FortiTokens from the failed Fortigate, on which you …

Table of Contents Upgrade - what actually happens Tips on HA upgrades About rollback/downgrade Troubleshooting tips Upgrade - what actually happens When upgrading a Fortigate HA Cluster the following happens: Admin uploads new FortiOS image via GUI to the Active member. Active Fortigate verifies validity of the image (tampered/broken image …

Table of Contents Introduction There are 2 ways to open a ticket - via phone, and on the web, use both of them, if needed. Have someone NSE 4 certified to open the ticket - gets you straight to the Level 2 Support. Ongoing communication - phone or email? If you work for …

I file it under "feature, not a bug" category - you are trying to delete some object, say VDOM, which is NOT actually used anywhere, but the Fortigate throws an error command fail. Return code -23. Fortigate keeps reference count of all objects at all times, and if for any given …

Table of Contents Configuration Debug and diagnostics diag test application dnsproxy 8 diag test application dnsproxy 3 diagnose test app dnsproxy 2 diagnose test app dnsproxy 7 diagnose test app dnsproxy 6 diagnose test app dnsproxy 9 Windows DNS commands dnscmd server-name-or-IP /zoneinfo domain-name dnscmd server-name-or-IP /ZoneResetSecondaries domain-name dnscmd server-name-or-IP …

Table of Contents Introduction Find files with a given word in it Search for a word in file names only, not their contents Find a file with multiple keywords in its name Limit search to specific file format(s) Look up folder names Search for an exact match Search in …

Table of Contents Resources Actually it is not news - it happened with the new 4.99 tcpdump version starting 2 years ago. But most binary distributions still lack this version. So, I had to install it from sources even on the RHEL 9, the newest version. The steps are simple …

When buying/renewing Fortigate firewalls it is important to take into account the Support/Updates life cycle. Fortinet use few terms in this regard we need to understand. End of Order Date The last date we can buy a particular model of the Fortigate. Those dates are individual for each …