Question, if I want to set up a fortigate firewall and switch for my home network do I need to get enterprise grade internet to get the gateway IP, WAN IP etc?
@Heineken17127 күн бұрын
Hi, is it possible to use the lldp med profile to tag two different brands of phones to two different vlans?
@tcourterevvgoodwill8 күн бұрын
Does it make a difference if they're FortiSwitch VLANs? I've got some security camera door phones that need to communicate with the PBX server and the NVR and the discovery between the two VLANs isn't working even with multicast policies turned on that should allow it. I'm just wondering if I missed a step. This is a 100F btw.
@steven.t278 күн бұрын
Just wondering if this is possible for active-active HA setup?
@kT2015N16 күн бұрын
Could you please explain how to check the ciphers enabled on SSLVPN settings...using CLI
@netconfig99920 күн бұрын
when you use your real PC connect to lab, is it will be loop?
@netconfig99920 күн бұрын
thanks you for sharing
@user-ph8oe2qu5o20 күн бұрын
Can we block one specific user to have access to Wi-Fi network and "cable" network and at same time, on same machine, one admin account will have access to both of them? Example. Local user go on McDonald and can't access Wi-Fi. Later, same computer, but it's one admin user. He can have access to McDonald Wi-Fi. Thanks
@myrddinwyllt842123 күн бұрын
Hi Everyone, I'm considering doing the Fortinet FCP certification and noticed on their training/e-learning website that there are several courses, and I'm not sure where to start. Could you please advised on what is the best/recommended order to do them(FortiAnalyzer, FortiManager, FortiGate 7.4 Administrator, FortiAuthenticator 6.5, FortiGate Security 7.2? Should I start with FortiAnalyzer or FortiManager first? Thank you very much in advance. Cheers,
@dhanushkasenavirathna796824 күн бұрын
Hi, Thank you for sharing this.... I have a question on this, the fortinet, recently i have purchased a device and SSL VPN is not available to visible on 'Feature Visibility'. Please let me know how can it enable on CLI.'
@samehh91128 күн бұрын
Hey Michael, Thank man for the great video. what about setting trusted hosts to a specific internal subnet and access through VPN for remote admin
@JaZzDeOliveira28 күн бұрын
How would you recommend doing this if I am using Zones on my Fortigate
@user-vt4ux5ib7zАй бұрын
is it possible that i can use the other WAN for usage of specific windows server?
@mxlm777Ай бұрын
Do you have a table where I can see the number of users per type of the Fortinet? This 30E can work properly up to how many users? The processor being in high usage generates a slower connection?
@B3nD0tАй бұрын
@FortinetGuru good job, when you do a ZTNA video? and Comparison to vpns?
@askmethodАй бұрын
13:03 from where did u bring floating IP
@varkey121Ай бұрын
How to capture VIP and real server information from FortiADS and its status from CLI..GUI is disabled in our environment
Ай бұрын
How to use the set vlan command? Can´t see it: Example: config switch mirror edit vlan_mirror set status active set switch-id 0 set dst-ingress-port 24 set vlan 10 next end
@tech-2-co-ukАй бұрын
Trouble is its only supported on the 1000, 2000 or 3000 series from what I can tell.
@vishalrixawala9495Ай бұрын
Where the conf file saves?
@sayfarouaia4798Ай бұрын
Difference with "internet services" as destination ?
@paradownload20512 ай бұрын
i have a question, thus fg-400F dont have onboard storage?
@axxoaxx2882 ай бұрын
very bad pen used for such a good video
@JaZzDeOliveira2 ай бұрын
Would you recommend the same inside zone if I am setting up a LACP with multiple VLAN's and will be looking to do policies that allow some VLAN's to talk between one another and for some to not have internet breakout
@FortinetGuru2 ай бұрын
You would add the VLANs to the zone not the aggregate interface. If you block intra-zone communication you can use policy to allow vlan to vlan communication.
@JaZzDeOliveira2 ай бұрын
@@FortinetGuru Thank you , I suppose then if I have a Local IP on the aggregate interface and wanted to use it as "Native" then that too would be added to the zone?
@JanDahl2 ай бұрын
IT worker with stress reaction -> very likely untreated ADHD and/or autism. Take care of yourself brother.
@ITS-yk5ky2 ай бұрын
The part about the device priority is wrong. The lower the number, the higher the priority.
@FortinetGuru2 ай бұрын
No. In HA higher priority wins. In routing, lower priority wins.
@kaetamayo47462 ай бұрын
Thanks!!
@disasstah2 ай бұрын
So is this the death of Trunking or are the fortinets simply just automating the processs for us?
@FortinetGuru2 ай бұрын
I wouldn't call it the death of trunking in general. Just more efficient applications.
@aforvendetta2 ай бұрын
what is the converage in open area?
@hritikjain55953 ай бұрын
Fortinet vs sophos vs palo alto
@Sabs7610103 ай бұрын
Hi @fortinet guru, thanks for the brilliant explication, i have a question in my job we connect through forticlient app which point to a fqdn name instead to ip address,so how does is it configured that on the fortigate firewall? Thanks in advance.
@FortinetGuru2 ай бұрын
The FQDN is configured in DNS at the registrar level to point to the external IP of the FortiGate. Either that or a CNAME pointing to the dynamic DNS entry provided through a third party.
@wearethecreatorss3 ай бұрын
Please make a video about FortiAuthentificator, how to do all this stuff and about MAB, MAC dynamic
@wearethecreatorss3 ай бұрын
Please make a video about FortiAuthentificator, how to do all this stuff and about MAB, MAC dynamic
@firnservices25533 ай бұрын
Legendary video. This was my first watch of you, and I watched the whole video, lol. I don't usually do that. Very informative and entertaining.
@deangarland30103 ай бұрын
be great to have a video that goes much deeper into VLAN's & subnets for multiple offices like this one touched on
@Cuiaba503 ай бұрын
Would love to see a video about Fortinet recent breach
@joep97643 ай бұрын
Awesome thanks
@A1N04 ай бұрын
Very helpful. Been using Fortigate for 2+ years and still learning. A big problem is WRONG things can MOSTLY work which can provide a false sense that its all good. But still holding off of 7.4.3. They say SD-WAN isn't really working.
@LVang1524 ай бұрын
I start to like how fortinet manage the firewall.
@FlorianZevedei4 ай бұрын
Damn! I was under that rock! Thanks for the update !
@popescusilviu99484 ай бұрын
HI! Can you do an updated video on the profile based vs policy based NGFW of fortigate. I would like to know if the policy based mode have improved
@popescusilviu99484 ай бұрын
I'm sorry for your loss. Im a new subscriber and i love your content! Keep up the good work. You are helping so many people.
@Nimitz_oceo4 ай бұрын
Fantastic content. I think the best way will be for you to make an entire course. However long at least you will lay out all the details. KZfaq is ok but we have to search through to specific videos.
@Rano-5014 ай бұрын
Great infos, thank u sir for sharing your knowledge
@henryrau2454 ай бұрын
Hey Mike, I love the video's they are very informative. Here's something that's likely more advanced. Dynamic VLAN assignment based on MAC address. We have data, voip and IP camera's on the network. Phones are easy using lldp, data we can make a default, the camera's are all from the same manufacturer so we can use the MAC OUI. I just don't know how to assign it in fortiswitch. I can do it in Netgear very easily, but can't find anyplace in Fortiswitch.
@mirei97504 ай бұрын
Hey Mike, I cannot confirm that the Fortigate will respond to HTTP/S requests if ALL Admin users have TrustedHost active. Packets will get dropped. From my understanding, all IPs from trusted host will be granted access to the GUI/SSH
@philliprgarcia4 ай бұрын
do we do anything with SIP ALG at all? disable? delete first?
@80andybrown804 ай бұрын
To be fair I love Forigates but the switching is a pain in the ass. Luckily most of my deployments have either Dell or Cisco cores that handle the nice stuff. Hopefully they get there but its going to take a lot before I change my mind.
@boyd88714 ай бұрын
Hello, can you explain more why the frotigate is degraded when primary/slave failed in active-active setup?