Tag: Fortinet Products
-
FortiGate Certificate Inspection for LDAP/Active Directory: Why Secure LDAP Breaks
FortiGate LDAP authentication to Active Directory fails silently when the DC certificate is self-signed and the FGT CA store doesn’t include the issuing CA.
-
Why Our FortiGate SSL VPN Kept Dropping After 4 Hours — And the Fix
Default SSL VPN idle timeout is 300 seconds — most engineers never check it until users start complaining.
-
FortiToken Mobile Push Failures: Why MFA Stopped Working After an iOS Update
FortiToken Mobile push notifications depend on Apple APNs and Google FCM — a certificate expiry or firewall block breaks MFA silently for all users.
-
FortiGate BGP Route Redistribution Gone Wrong: How We Leaked Internal Routes to the Internet
Redistributing connected routes into BGP without a route-map filter will advertise every subnet on the FortiGate — including management and internal networks.
-
FortiGate VDOM Policy Management: Best Practices for Multi-Tenant Environments
Virtual Domains (VDOMs) let one FortiGate serve multiple logical firewalls, but policy management complexity multiplies. Learn the best practices that keep multi-tenant FortiGate estates manageable.
-
Automating FortiGate Security Policy Review: Tools and Techniques
Manual FortiGate policy reviews are slow and error-prone at scale. This post covers automation techniques — from FortiManager scripts to REST API pipelines — that make continuous policy review practical.
-
Top 5 FortiGate Misconfigurations Found During Policy Audits
After auditing hundreds of FortiGate deployments, the same five misconfigurations appear repeatedly. This post explains each one, its risk, and the exact remediation steps.
-
FortiGate vs Palo Alto Policy Management: Key Differences Explained
FortiGate and Palo Alto Networks NGFW take fundamentally different approaches to security policy management. This side-by-side comparison helps engineers migrating or evaluating both platforms.
-
How to Prepare Your FortiGate for an External Security Audit
External security audits expose gaps that internal reviews miss. This guide walks through a structured FortiGate pre-audit preparation process — from policy cleanup to documentation — to ensure you pass with confidence.
-
FortiGate Policy Optimization: A Complete Guide for Network Engineers
The definitive FortiGate policy optimisation reference: hit-count analysis, shadow rule detection, naming conventions, VDOM best practices, and automation — everything a network engineer needs to maintain a clean, efficient rule base.
-
AI-Policy Optimizer (APO): Detect Unused & Risky FortiGate Firewall Policies
APO Tool is a standalone Windows application that parses FortiGate configuration files and generates structured policy audit reports — entirely offline, with no data ever leaving your local machine.
-
FortiGate Shadow Rules: How to Detect and Remove Redundant Firewall Policies
Shadow rules silently block traffic or override intended policies in FortiGate. Learn how to detect redundant and shadowed rules using CLI and APO Tool, and safely remove them without breaking production traffic.