Reset SD-WAN rules counters
The value 0x7f000003 is the hexadecimal ID of the SD-WAN rule. Or to reset all counters on all rules
Read moreFortigate STIG Hardning – Firewall STIG V1R3
Introduction Firewall security is a cornerstone of any robust network defense strategy. To ensure compliance with Department of Defense (DoD) standards, organizations must implement configurations that meet the Firewall Security…
Read moreFortigate STIG Hardning – NDM STIG V1R4
Introduction Securing network infrastructure is critical for maintaining compliance and protecting sensitive data. This post provides a detailed overview of the Security Technical Implementation Guide (STIG) requirements for Fortinet FortiGate…
Read moreFortigate Best practices – CLI Examples (7.6)
Below is a hardened, modular baseline that merges your management/HA/monitoring/logging snippets with additional controls for loopback-VPN, strict local-in rules, and geo-fencing. Each block stands alone and can be applied independently.…
Read moreConfiguring SAML SSO for FortiGate Administrator Login with Microsoft Entra ID
This guide outlines the steps to set up SAML-based Single Sign-On (SSO) for FortiGate administrator access, leveraging Microsoft Entra ID as the Identity Provider (IdP). Overview Terminology Mapping FortiGate Term…
Read moreDebugging FortiGuard Web Filter Issues After Firewall Reboot
When working with FortiGate firewalls, you might encounter a situation where FortiGuard Web Filtering services become unreachable after a reboot. This can prevent users from accessing web-filtered resources, leading to…
Read moreRestore a configuration backup on a FortiGate HA cluster
When restoring a configuration backup on a High Availability (HA) cluster, the process should be performed only on the primary unit. The configuration will then automatically synchronize with the secondary…
Read moreRepairing FortiAnalyzer when disk are in Read-Only mode
Maintenance Mode indicates that the system is unable to detect the hard drives, the hard drives cannot be correctly mounted, or the disk is experiencing corruption. If the hard drives…
Read moreFortigate Best practices – CLI Examples (7.0)
View the Fortigate best practices for 7.6 –> HERE Management *Missing from this guide. Management users from central user database ( LDAP, SAML etc ) Configure the web management portsHostname…
Read moreFortigate Best practices – Introduction
Management Network Should be independent from production or business traffic, it does not have to compete for resources and management access can be maintained when reconfiguring the production network. Policies…
Read moreFortigate – Airprint multicast forwarding between two different subnets
1) Enable Multicast forwarding: 2) Interface configuration:Two different interface having two different IP addresses assigned. 3) Configuring Multicast Policies: 4) Check if multicast routing is enabled or not:
Read moreEnable remote connections in Forticonverter
The new FortiConverter is designed as a web application. The application (FortiConverter.py) should be run with Administrator privileges because it reads and writes data from/to high privilege directories. For security…
Read moreForgot admin password on a Fortigate
Factory reset when forgot admin password Reboot the fortigate When the login prompt appears you have max 14 seconds to login with the maintainer account Username: maintainer Password: bcpb<FORTIGATE…
Read moreDiagnose Traffic Flow on a Fortigate
https://kb.fortinet.com/kb/documentLink.do?externalID=FD33882
Read more