Inspection mode feature comparison on Fortigates

May 24, 2024

I came across this nifty doc describing the capabilities of flow-based vs proxy-based inspection modes for Fortigates. Very cool stuff.

Silvrback blog image

Obvious (but notable) takeaway: certain features only work with proxy-based inspection mode.

  • Video Filter
  • Inline CASB
  • ICAP
  • Web Application Firewall
  • Data . . .

Read More

How to implement max file size limits and "log rotation" with tcpdump

July 10, 2013

Author's note: this is an older article I brought over from my prior blog by popular request. Some of the information may be a little dated.

Writing this down so I don't forget.

The issue: You need to collect a packet capture for an extended amount of time but don't want it to consume too much disk space.

. . .

Read More

   Subscribe by email and never miss a post.

This update link alerts you to new Silvrback admin blog posts. A green bubble beside the link indicates a new post. Click the link to the admin blog and the bubble disappears.

Got It!