Tuesday, April 13, 2021

Backup User to pull the configuration from fortigate using SSL keys

In configuration we are setting up 2 trust host to pull the configuration using any backup 
software "Rancid" or scripts.


 fwl1(backup) # show

config system admin
    edit "backup"
        set trusthost1 1.2.4.107 255.255.255.255
        set trusthost2 1.28.49.1 255.255.255.255
        set accprofile "super_admin"
        set vdom "root"
        set ssh-public-key1 "ssh-rsa M+hK0a60Hw== rancid"  >>>Full key need to put here
        set ssh-public-key2 "ssh-rsa +Yptf rancid" >>>>>>>>>>>>full key need put here
        
    next
end



Optimization of fortigate IPS

IPS signature need select according to infrastructure environment  Eg:-  if  we are not have Linux servers this ips signature can disable (d...