บันทึกเรื่องราวดีๆเกี่ยวกับ config Fortigate เอาไว้อ่านในภายหลัง

เซ็ตอัพ Fortigate เป็น 2 WAN To set up load sharing between two active WAN interfaces, where Internal traffic is initiated outbound, you need the following: There must be a Static default route for both WAN interfaces with equal distance. Note: The shorter the distance metric will be the preferred the route the FortiGate unit will use to route outbound traffic. Therefore load sharing between two active WAN interfaces must have a default route for each with equal distance. This enables outbound traffic to traverse either WAN interface based on the policy routes and access policies defined. Set up policy routes to forward traffic through one WAN interface. Policy routes are necessary to determine which outbound traffic (based on source/destination address, src/dst port or protocol, etc.)...

Read more »

เก็บ log ด้วย FortiAnalyzer 100C

Adding a FortiGate unit A FortiGate unit must be configured to send log messages to a FortiAnalyzer unit. Thisconfiguration can occur before or after the FortiAnalyzer unit’s configuration to receive those logs. The steps to add a device vary according to the log settings you want, and to a FortiAnalyzer unit’s configured response to an initial log connection attempt. For details, see “Unregistered Device Options” in the FortiAnalyzer Administration Guide. The following procedure uses the default options and configures a FortiGate unit running FortiOS 4.0. To send FortiGate unit logs to a FortiAnalyzer unit 1 On the FortiGate unit, go to Log&Report > Log Config > Log Setting. 2 Select the Expand Arrow for Remote Logging to expand the options. 3 Select a security level to log. 4...

Read more »