Archive for March, 2011

Show Fortigate interface IP Addresses

Ever work on a Fortigate and need to show the IP addresses quickly – especially if the interfaces are DHCP? Try this via CLI   #show system interface ? name    name IPSEC-VIFace   static   0.0.0.0 0.0.0.0  up   disable   tunnel dmz   static   0.0.0.0 0.0.0.0  up   disable   physical internal   static   10.100.10.1 255.255.255.0  up   disable   physical modem   static   0.0.0.0 […]

Read More…

Fortinet releases 4.0MR3 Build 0441

Fortinet quietly released 4.0 MR3 Build 0441 yesterday, March 19th.  Many fixes not addressed including: Infamous FireFox authentication.  Bug ID: 128865 IPS database updates could trigger FortiGate into conserve mode for a few seconds. Bug ID: 139625 FortiGate may drop connections when AV database update is performed. Bug ID: 123389 The upside, 2 1/2 pages […]

Read More…

Fortinet & their FortiAP’s

Fortinet has recently come out with their version of Access Points. In our next installment, I will explain how to configure this ingenious product from Fortinet. I really enjoy working with this hardware. It allows multiple SSID’s with-in one AP but logically separating them without doing any VLANing on the switch.

Read More…

Extended Ping – PART II FORTINET

Fortinet has the same ability to ping from a particular interface.  On a Fortigate, simply enter in the CLI Assumptions: Internal: 192.168.42.1 DMZ: 192.168.100.1 WAN1: 10.10.100.254 Customer Side Network: 172.15.30.1 # exec ping-options source 192.168.100.1 (The interface IP you want to source from – in this case the DMZ interface) # exec ping 172.15.30.1 Pings […]

Read More…