This post is about configuring VRRP between Fortinet Fortigate and Cisco Environment Fortigate firewall and Cisco router’s interfaces are configured using sub-interface, the physical interface will also work here. 100 is the VRRP Group ID FortiGate Firewall has a higher priority 255, so it will be the master Cisco Configuration Fortinet FortiGate Firewall Configuration As […]
How to Configure VRRP between Fortinet and Cisco Read More »
Environment Forti AP U431F – WiFi 6/AX enabled access points FortiGate Firewall is used as Wireless Controller FortiGate Firewall and Forti AP are on different VLAN/Networks. DHCP Option 138 is configured on Windows Server 2022 to point to the FortiGate (Wireless Controller) address Error You can see the Image ID is “MERU SECONDARY“ Solution You
How to Fix Forti AP boot loop – Wrong Image Read More »
Issue Summary FortiGuard ID: FG-IR-22-377CVE ID: CVE-2022-40684Severity: Critical / CVSS: 9.6 Specific versions of Fortinet FortiOS (FortiGate Firewall) and FortiProxy may allow an unauthenticated attacker to perform operations on the administrative interface via specially crafted HTTP or HTTPS requests. Affected Products FortiOS version 7.0.0 to 7.0.6 FortiOS version 7.2.0 through 7.2.1 FortiProxy: From 7.0.0 to
This post is about the configuration of IPsec VPN between Azure and Fortinet Fortigate firewall, as part 2 of the post “How to Configure Azure Hub and Spoke Topology” Overall Topology Environment *On-prem Environment has a pair of Fortinet Fortigate firewalls with a public IP of 4.4.4.4 *Virtual Network Gateway (with local gateway and connection
How to Configure IPsec VPN between Azure and Fortigate Firewall Read More »
This post is to document the process of configuring dynamic IPsec VPN from Juniper SRX to FortiGate Firewall, then configure OSPF over IPsec tunnel interfaces with a bit of OSPF route filtering. Environment 1 x Fortinet FortiGate Firewall with dynamic WAN IP address 1 x Juniper SRX firewall with Static WAN IP address Requirement is
How to Configure Dial-up IPsec VPN from Fortinet FortiGate to Juniper SRX Read More »
This post is about configuring IPsec VPN between Cisco FTD/FMC Firepower and Fortinet FortiGate firewall Environment Cisco FTD firewall on routed mode and managed by FMC Fortinet FortiGate Firewall Note: Feel free to modify the Phase1 and Phase2 settings based on your security requirements Fortinet FortiGate Firewall Configuration Go to “VPN – IPsec Tunnels –
How to Configure IPsec VPN between Cisco FTD/FMC and Fortinet Firewall Read More »
This post is to demonstrate the process to Configure FileZilla FTP Server with Fortigate Firewall. FileZilla Server configuration Connection configuration Auto-ban configuration Passive mode port range FTP user configuration Fortinet FortiGate Firewall configuration In virtual IP configuration, we have dedicated public IP, hence 1 to 1 Static NAT is used Firewall Policy configuration Common Error
How to Configure FileZilla FTP Server with FortiGate Firewall Read More »
This post is to demonstrate the quick steps to configure port forwarding / Destination NAT on the Fortinet Fortigate firewall. Environment Fortinet Fortigate firewall. ISP has provided a /29 range of the public IP addresses. The requirement is to open port 443 from specific public IP addresses, not the whole internet. Configure Virtual IP or
How to Configure Port Forwarding Destination NAT on Fortinet Firewall Read More »
This post is to document the process to manage the secondary Fortigate firewall in a HA firewall cluster, as well as the process to shut down the Fortigate firewall using CLI. This process comes in handy if you are using the same interface for both data and management traffic for the HA pair. Manage the
How to Manage the Fortigate Secondary/Passive Firewall and Shutdown the HA Pair Read More »
This post is to document the process to configure static IPsec VPN between Fortinet and Sophos Firewall. Environment 1x Fortinet Fortigate Firewall cluster running at active-passive mode 1x Sophos UTM Firewall Both sides have static public IP assigned Phase 1 and Phase 2 use the same encryption (AES256) and authentication (SHA256) algorithm, Group 14 or
How to configure IPsec VPN between Fortinet and Sophos Firewall Read More »
