Articles tagged with #Fortigate




Fortigate free VM Evaluation License is now permanent, not limited to 15 days, here is how to get it.

Starting with FortiOS 7.2.1, Fortinet removed built-in 15 days free evaluation license from the Fortigate VM images. It was replaced with the permanent evaluation license, still free. The steps to get it have changed - you now have to create a free Forticare/FortiCloud account, and use it inside …



Fortigate Local-in policy configuration examples for VPN IPSec, VPN SSL, BGP and more

Table of Contents Introduction Allow VPN IPSec port 500, 4500, and protocol ESP access to specific IP addresses only Allow only to specific BGP peers to connect to the port 179 TCP SSL VPN - limit access to the port 10443 to a specific country, Israel in this example Deny all …



How to downgrade Fortigate Fortios version without losing the configuration

Upgrading Fortigate Fortios version is easy: Find the correct upgrade path for the model you have https://docs.fortinet.com/upgrade-tool Back up the current configuration: Admin → Configuration → Backup If your Fortigate has an active subscription - upgrade directly from the Fortiguard servers, and if not - upload each Fortios image as …



FortiOS 7.2 New - diagnose debug flow in the GUI

One of the most helpful additions - 𝐝𝐢𝐚 𝐝𝐞𝐛𝐮𝐠 𝐟𝐥𝐨𝐰 is accessible in the GUI now. This can help when saving the trace for later analysis, or attaching it to the TAC case, or instructing someone less technical to do it. The usual CLI diaganose debug flow is there and not …



FortiOS 7.2 New - improved packet sniffer in the GUI

𝐅𝐨𝐫𝐭𝐢𝐎𝐒 7.2 𝐍𝐞𝐰: 𝐈𝐦𝐩𝐫𝐨𝐯𝐞𝐝 𝐩𝐚𝐜𝐤𝐞𝐭 𝐬𝐧𝐢𝐟𝐟𝐞𝐫 𝐢𝐧 𝐭𝐡𝐞 𝐆𝐔𝐈. This episode is about improved/re-worked packet sniffer in GUI. Most notable improvement is that we can see captured packets payload directly in the GUI! Video has no sound. Your browser does not support the video tag. Follow me on …



FortiOS 7.2 New: diagnose sys top process monitor in the GUI

𝐅𝐨𝐫𝐭𝐢𝐎𝐒 7.2 is out and is full of new cool features! In this video I will show a completely new feature in GUI - Process Monitor. It shows in real-time list of processes and their CPU/memory usage etc. Basically, all we have in the CLI as diagnose sys top …



Where do I download Fortigate free trial VM?

Where do I download the free trial VM of the Fortigate? Probably the most frequent question I get asked. And not to stop at the answer "support.fortinet.com", here is a video walk-through. The version you download has built-in 15 days trial license, which comes with some limitations you …



Fortigate new Workspace Mode to commit changes in a batch - with an example of changing default gateway

Table of Contents Introduction Important facts about WorkSpace Mode Example - change WAN IP address and default gateway Let’s start WorkSpace session. Do the configuration we need Verify Commit the changes and finish the session Introduction Fortigate saves and applies changes made on CLI immediately after you issue end / next …



Fortigate CLI Tips to avoid costly mistakes, save time, and make you more effective

Table of Contents Benefits of using CLI Use get inside any configuration subtree to show currently active settings for this module grep - the Secret weapon for searching the configuration and diagnostics Navigating the CLI Use select, append, unselect to avoid costly mistakes Disable screen paging to get rid of --More-- …



You CAN and probably should rename/delete the default admin user on Fortigate, here is how

Many best practices in security and regulations (PCI-DSS, NIST 800-53) demand or recommend renaming/deleting the default administrative accounts that come with the equipment. And every Fortinet product comes with the admin account built-in. Some people are afraid to lose administrative access by such changes, but with the Fortinet Fortigate …