ECMP Load Balancing Algorithms on Fortigates

June 10, 2024

Just a quick refresher on the various ECMP algorithms that Fortigates support (as of FortiOS 7.4):

Source IP - All traffic from a specific source IP is sent to the same interface.
Weighted - Interfaces with higher weights get more traffic.
Source-destination IP - All traffic sent from a specific source IP to a specific . . .

Posted in: ecmp fortigate fortinet routing

Inspection mode feature comparison on Fortigates

May 24, 2024

I came across this nifty doc describing the capabilities of flow-based vs proxy-based inspection modes for Fortigates. Very cool stuff.

Silvrback blog image

Obvious (but notable) takeaway: certain features only work with proxy-based inspection mode.

Video Filter
Inline CASB
ICAP
Web Application Firewall
Data . . .

Posted in: cybersecurity fortigate fortinet networking

Helpful Fortigate CLI Commands

May 22, 2024

Here's my list of helpful CLI commands for Fortinet stuff (all published in the Fortinet Doc Library. I'll keep adding to this over time.

FortiGuard

diagnose autoupdate versions - Lists the status of FortiGuard DBs and engines installed.

Routing

get router info routing-table all - . . .

Posted in: cli fortigate fortinet

OWASP Cheat Sheet Series

May 22, 2024

I stumbled across this amidst some prior training and thought I'd pass it along. OWASP has a fantastic collection of AppSec cheat sheets here.

A zip archive of all the cheat sheets is available for download here.

Posted in: appsec cybersecurity owasp

Fortinet FCP Study Resources

May 04, 2024

A new month, a new certification endeavor! This time, I'm starting to focus on the Fortinet Certified Professional track. What follows is a breakdown of the various study resources I'm using. Time permitting, I'll update it with additional resources I come across along the way.

Miscellaneous

Fortinet . . .

Posted in: cybersecurity fcp fortinet training

Metasploit Search Parameters

May 02, 2024

Just a friendly reminder on the search options, keywords, and sorting choices for metasploit.

Usage: search [<options>] [<keywords>:<value>]

Prepending a value with '-' will exclude any matching results.
If no options or keywords are provided, cached results are displayed.

OPTIONS:
 -h . . .

Posted in: metasploit

Workaround for delayed response between Logitech Harmony and Roku

April 01, 2024

This was driving me insane for the better part of a day.

Fun fact, Logitech Harmony Hub defaults to talking to Roku devices via network-based remote commands. In theory, it's a really cool idea... until you realize the latency penalties of multiple hops:

Harmony Remote --> Harmony Hub --> Router --> Roku

. . .

Posted in: logitech roku

All Categories: cybersecurity(27) sc-100(22) azure(16) microsoft(14) certification(11) kubernetes(7) productivity(6) linux(5) docker(4) containers(4) fortinet(4) fortigate(3) edgevolt labs(3) shell(3) terraform(3) sendmail(2) networking(2) ubuntu(2) zero trust(2) marvel move(2) roku(2) python(2) marvel(2) iot(2) the drive on 17(2) budgie(1) key vault(1) security workflows(1) nist(1) microsoft graph(1) verified id(1) mcsb(1) workload security(1) azure blueprints(1) aws(1) stix(1) taxii(1) data residency(1) azure monitor(1) conditional access(1) cwpp(1) cpsm(1) guardians of the galaxy(1) movie reviews(1) monster hunter now(1) logitech(1) fcp(1) owasp(1) appsec(1) routing(1) ecmp(1) deus ex(1) developer notes(1) listening(1) negative index(1) scripting(1) registry(1) debian(1) bookmarks(1) deepstash(1) micro-learning(1) azure landing zone(1) fitness(1) java(1) miscellaneous(1) music(1) training(1) storage(1) cooking(1) metasploit(1) recipes(1) videogames(1) ssh(1) movies(1) soccer(1) authentication(1) image(1) playlist(1) cli(1) traffic on 17(1) edgevolt radio(1) tcpdump(1) packet capture(1) jks(1) pfx(1) michael hyatt(1) home

← Previous 1 2 3 4 5 6 7 8 9 10 11 12 Next →