Not that guy

Just more ramblings of another IT Guy

Check Fortigate interface for errors

Posted on 08/05/2012 by Googs

You can use the following command to check a Fortigate interfacefor any possible errirs that may affect traffic performance

# diagnose hardware deviceinfo nic <port_name>

Posted in Fortigate, Tips+Tricks | Leave a comment

Fortinets Irish support number

Posted on 03/05/2012 by Googs

Fortinet have setup an Irish support number which means calls to france are no longer required. While the calls are routed to the same location the costs go down.
The number for Fortinet is 1800 309 150 .

Posted in Fortigate | Leave a comment

Determine FortiAP when not connected to Fortigate

Posted on 20/03/2012 by Googs

When faced with the need to determine what version of firmware a FortiAP is running with connecting it to a Fortigate, connect to the FortiAP via the console and run the following command “fap-get-status”

Posted in Fortigate, Tips+Tricks | Leave a comment

Convert Cisco Juniper and Checkpoint configs to Fortifagate compatible

Posted on 19/03/2012 by Googs

The FortiConverter converts configuration files from Juniper, Checkpoint and Cisco

The conversion process will not convert all settings but will do enough to take the major work out of moving to a Fortigate
It can be found here

Posted in Fortigate, Tips+Tricks | Tagged | Leave a comment

Backup cisco switch config to TFTP server

Posted on 23/02/2012 by Googs

To backup the running config on a cisco switch to a TFTP server
#copy running-config tftp:

To make a backup of the VLAN.dat file
#copy flash:vlan.dat tftp:

Posted in Cisco, Tips+Tricks | Leave a comment

Add VLAN to cisco switch

Posted on 21/02/2012 by Googs

When you need to group ports on a cisco switch into a VLAN do the following

  1. Log onto terminal
  2. enable
  3. conf t
  4. vlan 1001  (where 1001 is the vlan id to be assigned
  5. name ExampleVLANname
  6. exit

This creates the VLAN. Now it is time to assign the ports to the VLAN

Whicle still in “conf t”

  1. interface fastethernet 0/1  (where 0/1 is the port to be edited)
  2. switchport access vlan 1001
  3. no shutdown
  4. exit

Make sure to copy the running config to startup

#copy run start

Posted in Cisco, Tips+Tricks | Leave a comment

Adding Fortigate to Fortimanager

Posted on 14/02/2012 by Googs

When attempting to add a Fortigate to a FortiManager you may encounter the following error when trying to import the device.

“fortimanager failed to discover device with IP address”

 

If this is the case check the time settings on the Fortigate and verify they match the FortiManager

Posted in Fortigate, Tips+Tricks | Leave a comment

Microsoft Update breaks Fortigate SSL VPN portal

Posted on 05/02/2012 by Googs

It seems that a a recent update provided by Microsoft to fix vulnerabilities in  has broken fuctionality of the SSL VPN on Fortigate devices. If you see the following error messages when browsing to the login page you may be expierencing this issue:

 

Internet Explorer:
Internet Explorer cannot display the webpage

Firefox:
The connection was reset
The connection to the server was reset while the page was loading.

Chrome:
No data received
Unable to load the web page because the server sent no data.

 

The update released by Microsoft is to fix a vulnerability in SSL 3.0 and TLS 1.0. The vulnerability could allow information disclosure if an attacker intercepts encrypted web traffic served from an affected system. More from Microsoft here

 

Fortinet’s customer support bulletin CSB-120117-1 refers to the issue. Custom firmware which includes a patch is available on demand from Fortinet support. . Forthcoming general releases will include this fix.

Posted in Fortigate, Security, Windows | 4 Comments

Steelhead Default username and password

Posted on 17/01/2012 by Googs

The default username and password for Riverbed Steelhead are:

Username = admin

Password = password

 

To reset the unit to factory defaults do the following

> enable

#reset factory reload

 

 

A quick Google is sometimes easier than having to look up documentation…..

Posted in Tips+Tricks | Leave a comment

Group Policy checking

Posted on 13/01/2012 by Googs

When trying to troubleshoot why a group policy does not appear to be applying to a user the following command can be used

“gpresult /r”

This will tell you what policies are applied and which ones are not.

Posted in Tips+Tricks, Windows | Leave a comment