Next Gen Firewall

How to Manage the Fortigate Secondary/Passive Firewall and Shutdown the HA Pair

This post is to document the process to manage the secondary Fortigate firewall in a HA firewall cluster, as well as the process to shut down the Fortigate firewall using CLI. This process comes in handy if you are using the same interface for both data and management traffic for the HA pair. Manage the …

How to Manage the Fortigate Secondary/Passive Firewall and Shutdown the HA Pair Read More »

How to configure IPsec VPN between Fortinet and Sophos Firewall

This post is to document the process to configure static IPsec VPN between Fortinet and Sophos Firewall. Environment 1x Fortinet Fortigate Firewall cluster running at active-passive mode 1x Sophos UTM Firewall Both sides have static public IP assigned Phase 1 and Phase 2 use the same encryption (AES256) and authentication (SHA256) algorithm, Group 14 or …

How to configure IPsec VPN between Fortinet and Sophos Firewall Read More »

How to Configure Basic Bandwidth Shaping Policing on Cisco Fortigate for ISP Connection

When Internet Service Providers (ISP) have a new internet link provisioned, very often they have shaping rules on their NTU to regulate internet traffic at promised rate. If your firewall/router/switch is sending excessive traffic than promised rate, the packet will be dropped, then ends up with suboptimal performance and slow internet speed. This post is …

How to Configure Basic Bandwidth Shaping Policing on Cisco Fortigate for ISP Connection Read More »

How to Revert the Fortinet Firewall Configuration back Automatically when Handling Changes Remotely

When network professionals handle changes remotely, it is always good to have a safety net available. If you are familiar with Juniper Junos, you would love the “commit confirmed” command very much, as it will revert the config back to the previous config after 10 minutes automatically, in the event of you screwed up the …

How to Revert the Fortinet Firewall Configuration back Automatically when Handling Changes Remotely Read More »