Fortigate Technical : when a general internet policy conflicts with an incoming VIP
- No Comments
- Aug, 07, 2018
- Angelo Schalley
- Fortigate/Fortinet, Networking, security
I ran into the following problem when configuring a Fortigate Firewall.
I created a general purpose internet rule on the Fortigate. Which looks like this:
Internal networks – to – Internet // protocols : tcp/80/443
Read more on Fortigate Technical : when a general internet policy conflicts with an incoming VIP…
Enable DNS SEC for a netscaler NON-GSLB / GSLB DNS configuration
- No Comments
- Mar, 27, 2018
- Angelo Schalley
- Certificates, DNS, Netscaler, Networking, security
Now a days you want to verify if a DNS zone is secure and verified correctly with DNS sec. This is how you do it on a Netscaler if you ever wondered :-).
Read more on Enable DNS SEC for a netscaler NON-GSLB / GSLB DNS configuration…
enable sni on a fortiweb for back-end servers in a ADFS configuration
- No Comments
- Jul, 21, 2017
- Angelo Schalley
- adfs/saml, Fortigate/Fortinet, FortiWeb, Networking, security
Configuring server-side SNI support (needed for Microsoft ADFS)
FortiWeb supports server-side SNI (Server Name Indication). You use this feature when you have the following configuration requirements:
The operating mode is reverse proxy or true transparent proxy.
You offload SSL/TLS processing to FortiWeb and use SSL/TLS for connections between FortiWeb and the pool member (end-to-end encryption).
One or more server pool members require SNI support.
Read more on enable sni on a fortiweb for back-end servers in a ADFS configuration…
