IPv6 in FortiOS

IPv6 in FortiOS From an administrative point of view IPv6 works almost the same as IPv4 in FortiOS. The primary differences are the use of IPv6 format for addresses and fewer address types for IPv6. There is also no need for NAT if the FortiGate firewall is the interface between IPv6 networks. If the subnets […]

IPv6

IPv6 Internet Protocol version 6 (IPv6) will succeed IPv4 as the standard networking protocol of the Internet. IPv6 provides a number of advances over IPv4 but the primary reason for its replacing IPv4 is its limitation in addresses. IPv4 uses 32 bit addresses which means there is a theoretical limit of 2 to the power […]

RPC over HTTP

RPC over HTTP How protocol options profiles and SSL inspection profiles handle RPC (Remote Procedure Calls) over HTTP traffic can be configured separately from normal HTTP traffic. The configuration is done in the CLI. Configuration in Protocol Options config firewall profile-protocol-options edit 0 IPv6 set rpc-over-http [disable|enable] end Configuration in SSL/SSH inspection config firewall ssl-ssh-profile […]

SSL/SSH Inspection

SSL/SSH Inspection While the profile configuration for SSL/SSH Inspection is found in the Security Profiles section it is enabled in the firewall policy by enabling any of the security profiles. Choosing which of the SSL/SSH Inspection profiles is all that can really be done in the policy. RPC over HTTP The reason for having this […]