Where can “set source-ip” be used.FortiGate 60E 7.0.5 config system dns set source-ip 0.0.0.0 config system sflow set source-ip 0.0.0.0 config system netflow set source-ip 0.0.0.0 config system snmp user edit “snmp-user” set source-ip 0.0.0.0 config system fortiguard set source-ip 0.0.0.0 config log fortiguard setting set source-ip 0.0.0.0 config log fortianalyzer setting set source-ip 0.0.0.0 […]
Category: Fortinet
Just for fun – FortiGate HA 4-node cluster
FortiGate 100D v6.2.10 build1263
Fortinet NSE7 6.4 CLI
For my NSE7 6.4 preparation, I made a summary of the CLI commands.In the mean time, you can take a NSE7 7.0 exam, but the CLI commands won’t change much. CH. 01: SECURITY FABRIC diagnose sys csf upstream diagnose sys csf downstream config system csf set configuration-sync local end diagnose sys csf neighbor list diagnose […]
FortiAnalyzer query examples
Log View ==> FortiGate ==> Application Control (apprisk=high or apprisk=critical) and -action=block
FortiGate / FortiManager TCL script example
Creating 150 address with a TCL-script #! proc do_cmd {cmd} { puts [exec “$cmd\n” “# ” 15] } set numhosts 150 do_cmd “config firewall address” for {set i 12} {$i <= $numhosts} {incr i} { do_cmd “edit host-$i” do_cmd “set subnet 192.168.21.$i/32” do_cmd “next” } do_cmd “end”
FortiGate CLI
get get router info routing-table all get router info routing-table database get router info routing-table ospf get router info ospf neighbor get system arp get system arp | grep 192.168.1.10 get system source-ip status get ipsec tunnel list get vpn ipsec tunnel details execute execute router clear ospf process execute ping 8.8.8.8 execute disk FortiGate-600D […]
FortiGate VM Trial license not working
Here a rewrite of a post on the forum of Fortinet. Credits go to dennisv on this Thread: https://forum.fortinet.com/tm.aspx?m=167911 This post concerns when a freshly installed Trial license of a FortiGate VM does not work, due to an error in the evaluation license. An error at the GUI or CLI appears. First edit the Virtual […]
Create ADOM in FortiManager
It’s very easy to create an ADOM in FortiManager. Log in to the FortiManager: Select an ADOM: root: Choose System Settings: Choose: All ADOMs ==> Create New: Enter a Name for the New ADOM and click OK: An ADOM is added, ADOM Real:
Moving a FortiGate in FortiManager from an ADOM to another ADOM
Moving a FortiGate from one ADOM to another, when a FortiGate is placed in the wrong ADOM. ADOM is root, FortiGate is NGFW-1. We want to move NGFW-1 to ADOM:Core Select “DeviceManager” Select “System Settings” Select/Edit the ADOM where we want to move the FortiGate to: “Core”Notice at ADOM root which has 1 device. Click […]
Configure FortiWifi 30D
Firmware update ForiWIfi 30D A FortiWifi 30D after a factory reset, firmware vesion v5.2.5,build701. Updating the FortiWifi 30D by clicking on [Update]. The updating proces is done with the tool “FortiExplorer”. With this tool you connect the FortiWifi 30D with USB to your PC/Laptop. Click on [Upload Firmware], browse to the specific firmware (no […]