System Advancements

Leave a reply

New execute traceroute command options (272169)

Different query options can be configured for the execute traceroute command. These settings can also be saved using the execute traceroute-options command as follows:

execute traceroute-options device [Auto | <interface name>]

execute traceroute-options queries <integer>

execute traceroute-options source [Auto | <source interface IP address>]

The queries setting is to determine the number of queries per hop. Use execute traceroute-options to view the traceroute settings:

execute traceroute-options view-settings

Traceroute Options:

Number of probes per hop: 3

Source Address: auto

Device: auto

 

Administrator password updates (292858)

To set a minimum level of security for the administrative accounts, minimum levels of complexity can be set on guest admin accounts.

config system password-policy-guest-admin set status [enable | disable]

set min-lower-case-letter <integer> set min-upper-case-letter <integer> set min-non-alphanumeric <integer> set min-number <integer>

end

If the required level of complexity is not met, an error message will appear explaining that the password must conform to the system password policy.

 

Certificate validation added to FortiGate email server configuration (299506)

When configuring the email server on a FortiGate to send out alert emails that use SMTPS, the FortiGate can validate the email chain, thus reducing the possibility of compromise.

In the CLI the configuration of the email is set up with the following syntax:

config system email-server set type custom

set reply-to <email address>

set server <SMTP server IP address or hostname>

set port <integer for SMTP server port>

set source-ip <SMTP server source address – IPv4 format> set source-ip6 <SMTP server source address – IPv6 format> set authenticate [enable| disable]

set validate-server [enable| disable]

security Connection security.

set security [none | starttls |smtps|

end

The set validate-server option is the new setting that enables the verification.

 

Changes to backing up and restoring configuration files (298176)

When you insert a USB drive into a FortiGate USB port options to save the configuration to USB and restore configuration from a USB appear on the configureation save and restore pages.

You can also use the command execute backup usb command to backup the configuration to the

USB drive.

 


Having trouble configuring your Fortinet hardware or have some questions you need answered? Check Out The Fortinet Guru Youtube Channel! Want someone else to deal with it for you? Get some consulting from Fortinet GURU!

Pages: 1 2 3 4 5 6 7

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.