Inspection mode feature comparison on Fortigates
May 24, 2024
I came across this nifty doc describing the capabilities of flow-based vs proxy-based inspection modes for Fortigates. Very cool stuff.
Obvious (but notable) takeaway: certain features only work with proxy-based inspection mode.
- Video Filter
- Inline CASB
- ICAP
- Web Application Firewall
- Data . . .
How to implement max file size limits and "log rotation" with tcpdump
July 10, 2013
Author's note: this is an older article I brought over from my prior blog by popular request. Some of the information may be a little dated.
Writing this down so I don't forget.
The issue: You need to collect a packet capture for an extended amount of time but don't want it to consume too much disk space.
. . .