In case you guys are having issues getting ahold of the FortiMail 5.1,1 Administration guide I have included a copy of the PDF here. This site will also have a break out of the guide in the FortiMail section. Each section will have it’s own page etc. FortiMail 5.1.1 hosted by Fortinet
I’m not one to be all about the certifications of the world, at least when it comes to Vendors, but I have held on to my FCNSP (Fortinet Certified Network Security Professional) grandfathered in NSE4 (Fortinet Network Security Expert) for long enough. I have run through the Partner NSE5 training (the training is actually really […]
Holly Rollo was an awesome marketing executive that recently got hired by Fortinet (back in September) to be the Chief Marketing Executive. She was tasked with getting Fortinet’s shit together when it came to marketing. Marketing, is and has always been, the weak link in Fortinet’s structure which is understandable. The company is ran by […]
FGSP now supports synchronizing IPsec sessions The FGSP now synchronizes IPsec tunnels between FortiGates in an FGSP configuration. IPsec tunnel synchronization synchronizes keys and other run time data between the FortiGates in an FGSP configuration. No additional configuration is required to synchronize IPsec sessions. Also you cannot disable IPsec session synchronization.
FGSP CLI command name changed The FortiOS 5.2 command config system session-sync has been changed in FortiOS 5.4 to config system cluster-sync. Otherwise the command syntax is the same and the config system ha commands used for FGSP settings have not changed.
HA heartbeat traffic set to the same priority level as data traffic Local out traffic, including HA heartbeat traffic, is now set to high priority to make sure it is processed at the same priority level as data traffic. This change has been made because HA heartbeat traffic can be processed by NP6 processors that […]
Firewall local-in policies are supported for the dedicated HA management interface To add local in polices for the dedicated management interface, enable ha-mgmt-inft-only and set intf to any. Enabling ha-mgmt-intf-only means the local-in policy applies only to the VDOM that contains the dedicated HA management interface. config firewall local-in-policy edit 0 set ha-mgmt-intf-only enable set […]
If you were one of those people, like me, that would have application control sessions blocked after a failover on HA then 5.4 may be beneficial for you! See below! VOIP application control sessions are no longer blocked after an HA failover (273544) After an HA failover, VoIP sessions that are being scanned by application […]