The Packets, Life and everything
Tests is there someone listening netstat -an | findstr 0.0.0.0:80 TCP 0.0.0.0:80 0.0.0.0:0 LISTENING UDP 0.0.0.0:80 *:* Powershell port test Test-NetConnection -ComputerName "10.55.113.101" -Port 80 -InformationLevel "Detailed" Lookup soure interface get router info routing-table details 10.255.2.250 Lookup the policy diagnose firewall iprope lookup 10.255.2.250 30000 10.137.2.104 80 tcp port1 matches policy id: 1039431 The policy …
We utilize FortiManager's Provision CLI Templates to establish common configurations on our Firewalls This approach is practical to ensure that these settings are consistently applied during every firewall installation. However, we encounter from time to time the issue with FortiManager, that the CLI Templates lack awareness of the Firewall's specific versions. Unfortunately, the FortiGate CLI …
Continue reading "Fortigate – Fortimanager install issues and backward compatiblity"
So after a while some basic Cisco stuff. Thanks Craig for being the Guy you are. We had to divert traffic some traffic to an dedicated line for Netscope, to an different Internet Line. configure terminal ip access-list pbr-netscope-over-second-provider permit 10.255.86.0 0.0.1.255 3.123.155.214 0.0.0.0 permit 10.255.86.0 0.0.1.255 3.123.215.247 0.0.0.0 permit 10.255.86.0 0.0.1.255 3.123.221.103 0.0.0.0 permit …
go env -w GOPROXY="direct"set HOME=c:\somewhereset HOMEDRIVE=c: https://github.com/MarkusDeutschmann/ssh2plink/tags
Here’s a guide on managing your iptables rules with line numbers, including adding, appending, deleting, and moving rules: [TOC] List rules with Line numbers To view your current iptables rules with line numbers, use the following commands: iptables -t filter -L INPUT --line-numbers -n iptables -t filter -L OUTPUT --line-numbers -n iptables -t filter -L …
As we all some times reflect on the ever-evolving landscape of networking, we can't help but acknowledge the inevitability of change. Brands merge, companies evolve, and documentation that once seemed abundant can become a rare treasure. It's a relic from a time when our network thrived under the banner of a once-proud name. As I …
# config system settings set gui-replacement-message-groups enable end config system replacemsg-group edit "wf-incomming" set comment '' set group-type utm config http edit "urlfilter-err" set buffer "<!DOCTYPE html><html> <head> <meta charset=\ "UTF-8\"> <title> Redirecting to pp52.de </title> <meta http-equiv=\"ref resh\" content=\"0; url=https://pp52.de/\"> </head> <body> </body></html >" set header http set format html next edit "url-block" set …
Continue reading "Fortinet – Customize replacement messages for individual web filter profiles"
"Reminder to self regarding routing information: This document is derived from Fortinet KB Articles and covers topics such as accessing FIB/RIB routing data via the CLI, understanding the routing process in FortiGate (route-lookup-process), handling multiple default routes when SD-WAN rules are not the preferred option, and more." Routing in FortiGate (route-lookup-process) How does FortiGate decide …
Continue reading "FortiGate – Viewing FIB/RIB routing information in CLI"
Short collection of what is my IP Servers. ifconfig.io ifconfig.me ifconfig.co icanhazip.com Usage curl ifconfig.co/port/22 SD-WAN As a personal note route ifconfig.* over the primary connection on the Fortigate firewall and icanhazip.com over the secondary config firewall address edit "ifconfig.co" set type fqdn set fqdn "ifconfig.co" next edit "ifconfig.me" set type fqdn set fqdn "ifconfig.me" …
As a personal Note the German Telekom SIP settings SIP-ID/Benutzer:Ihre TelefonnummerBildschirmname (falls vorhanden):Ihre TelefonnummerAuthentifizierungsname/Benutzername:Ihre E-Mail-Adresse, z. B. ihr-name@t-online.dePasswort:Ihr PasswortSIP-Proxy:tel.t-online.deRegistrar:tel.t-online.deRealm:tel.t-online.deSTUN-Server:stun.t-online.deOutbound-Proxy:leer lassen oder ebenfalls tel.t-online.de Gigaset https://service.gigaset.com/de/support/solutions/articles/75000035447-dns-srv-lookup There is no A record for tel.t-online.de # dig @ns1.edns.t-ipnet.de tel.t-online.de ; <<>> DiG 9.18.12-1-Debian <<>> @ns1.edns.t-ipnet.de tel.t-online.de ; (2 servers found) ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- …
After my recently doing some exploration of HPE/Aruba ZTP, I found myself truly captivated by the potential of FortiGates doing Zero Touch Provisioning. I've been contemplating a solution that involves deploying a bootstrap server for remote site installations. Whether dealing with clients or servers, this approach is a network boot environment, which can be seamlessly …
Patrick Marc's Networks 