This topic is one that we've visited in the past by linking to my friend Manny @ InfoSecMonkey. However, the link itself has been...

Hoo boy! It's been a minute since I've last written, or recorded anything. 2024 was a whirlwind year, and a lot went on then. Thank you...

Threat feeds are helpful fabric connectors that allow you to dynamically whitelist or blacklist traffic, file hashes, and domains. In...

Some IT organizations like to image laptops and ship them out to remote users without having to cache user credentials. For organizations...

Terminating SSL VPN to a loopback offers a lot more flexibility by means of security, filtering and inspection. In this video we take a...

Update: As I was deploying my other spokes I realized spoke to spoke connectivity wasn't establishing, and routing correctly. I have...

In this video we take a look at Securing Internet Access - say in lieu of DNS filtering services, or zecure internet access services....

A colleague of mine asked a question "can you enabl/disable a policy using the FortiOS API with the iOS shortcuts app?". It turns out...

I had a customer call me panicking that their FortiGate CPU was pegged at 100%, while sitting idle. My first question was "What firmware...

In this video we take a look at how you can set up MC-LAG on FortiGate managed FortiSwitches. Thank you for watching, I hope this helps.

Let's say you had to prepare a configuration for a FortiGate not in your possession. Typically a good starting point is the factory...

In this video we follow on from the previous module, adding a high level look at VDOMs and admin accounts.

In this video we take a look at a few setup decisions that should be made prior to putting a FortiGate into production.

Starting where we left off in Module 1, we take a look at: Factory Reset / Log disk format WAN/LAN Addressing LAN Services (DHCP, DNS,...

Fortinet has come a long way in 22 years. And as they've started to lead in the network and cybersecurity market, I wanted to create a...

In a couple of my posts I noted that the Single Logout would need to be signed, and seemed to work fine despite a message that's...

You may be wondering didn't you already post a redirect to Kim Frellsen's blog on this? Yes, yes I did. Here's the thing though, I came...

In assisting a customer with the AD FS configuration we encountered some difficulties in redirection. The particular issue looked like...

Update: including steps for tunnel based VPN as well. Update 3/10: updated assumptions I am starting to think we've pretty much covered...

I'd first like to start off this post by wishing everyone a happy and safe new year! It's been almost 3 months since my last post, things...