When buying/renewing Fortigate firewalls it is important to take into account the Support/Updates life cycle. Fortinet use few terms in this regard we need to understand. End of Order Date The last date we can buy a particular model of the Fortigate. Those dates are individual for each …

When subscription for Fortiguard-based services expires, many things will stop working, but a lot will continue to work still. Below is the full list of features in Fortigate that will continue working after the subscription expires. It also means these features work even if your Fortigate has never had the …

Table of Contents Introduction Is it worth buying hardware Fortigate vs free VM evaluation one? Can I get a demo Fortigate appliance? Can I buy a used Fortigate from Fortinet? Is it OK/legal from the Fortinet standpoint to buy the firewall on the secondary market? Will I need a …

On 6th of October 2022, the Fortinet started circulating internally and to their clients preliminary alert that admin GUI vulnerability had been found. They released more details by now, but the whole picture regarding the exploitation path is not known yet. The vulnerability was assigned severity 9.6 (very high …

Starting with FortiOS 7.2.1, Fortinet removed built-in 15 days free evaluation license from the Fortigate VM images. It was replaced with the permanent evaluation license, still free. The steps to get it have changed - you now have to create a free Forticare/FortiCloud account, and use it inside …

Table of Contents Introduction Allow VPN IPSec port 500, 4500, and protocol ESP access to specific IP addresses only Allow only to specific BGP peers to connect to the port 179 TCP SSL VPN - limit access to the port 10443 to a specific country, Israel in this example Deny all …

Upgrading Fortigate Fortios version is easy: Find the correct upgrade path for the model you have https://docs.fortinet.com/upgrade-tool Back up the current configuration: Admin → Configuration → Backup If your Fortigate has an active subscription - upgrade directly from the Fortiguard servers, and if not - upload each Fortios image as …

One of the most helpful additions - 𝐝𝐢𝐚 𝐝𝐞𝐛𝐮𝐠 𝐟𝐥𝐨𝐰 is accessible in the GUI now. This can help when saving the trace for later analysis, or attaching it to the TAC case, or instructing someone less technical to do it. The usual CLI diaganose debug flow is there and not …

𝐅𝐨𝐫𝐭𝐢𝐎𝐒 7.2 𝐍𝐞𝐰: 𝐈𝐦𝐩𝐫𝐨𝐯𝐞𝐝 𝐩𝐚𝐜𝐤𝐞𝐭 𝐬𝐧𝐢𝐟𝐟𝐞𝐫 𝐢𝐧 𝐭𝐡𝐞 𝐆𝐔𝐈. This episode is about improved/re-worked packet sniffer in GUI. Most notable improvement is that we can see captured packets payload directly in the GUI! Video has no sound. Your browser does not support the video tag. Additional Resources Fortigate …

𝐅𝐨𝐫𝐭𝐢𝐎𝐒 7.2 is out and is full of new cool features! In this video I will show a completely new feature in GUI - Process Monitor. It shows in real-time list of processes and their CPU/memory usage etc. Basically, all we have in the CLI as diagnose sys top …