Fortinet: Unterschied zwischen den Versionen

Aus Meine Wiki
Zur Navigation springen Zur Suche springen
 
(30 dazwischenliegende Versionen desselben Benutzers werden nicht angezeigt)
Zeile 7: Zeile 7:
 
[http://kb.fortinet.com/kb/viewContent.do?externalId=11344 Serial cable pinouts for console access ]
 
[http://kb.fortinet.com/kb/viewContent.do?externalId=11344 Serial cable pinouts for console access ]
  
 +
;Youtube
 +
[https://www.youtube.com/watch?v=9A6XHRE00eA Replacing Old ASA With FortiGate 1500D]
 
;Allgemein
 
;Allgemein
[https://docs.fortinet.com/forticlient/admin-guides Admin Guides]
 
  
 +
:- [https://docs.fortinet.com/forticlient/admin-guides Admin Guides]
 +
:- [http://help.fortinet.com/fdb/5-0-0/html/index.html Help]
  
;Einrichtung
+
;Einrichtung und Konfiguration
  
- SSLVPN [http://cookbook.fortinet.com/ssl-vpn-using-web-and-tunnel-mode-54/ SSL VPN]
+
:- SSL VPN [http://cookbook.fortinet.com/ssl-vpn-using-web-and-tunnel-mode-54/ Konfig SSL VPN]
- „VoIP-ALG“ [https://www.nethinks.com/blog/standortvernetzung/freie-bahn-fuer-telefonie-deaktivieren-des-voip-alg-einer-fortigate-firewall/ „VoIP-ALG“ ]
+
:- Network [http://help.fortinet.com/fdb/5-0-0/html/source/tasks/t_network_configuration_cli.html Konfig Network]
 +
:- DHCP servers and relays [https://help.fortinet.com/fos50hlp/54/Content/FortiOS/fortigate-networking-54/Interfaces/DHCP%20servers%20and%20relays.htm Konfig DHCP]
 +
:- VoIP-ALG [https://www.nethinks.com/blog/standortvernetzung/freie-bahn-fuer-telefonie-deaktivieren-des-voip-alg-einer-fortigate-firewall/ Konfig VoIP-ALG ]
  
;Fehler
+
  config system dhcp server
[http://kb.fortinet.com/kb/viewContent.do?externalId=FD38155&sliceId=1 Technical Note: FortiGate or FortiClient Enterprise Management Server (EMS) not found]
+
 
 +
    show
  
 +
;Fehler, Troubleshooting, Disgnose
  
 +
:- [http://kb.fortinet.com/kb/viewContent.do?externalId=FD38155&sliceId=1 Technical Note: FortiGate or FortiClient Enterprise Management Server (EMS) not found]
 +
:- [https://blog.webernetz.net/cli-commands-for-troubleshooting-fortigate-firewalls/ Troubleshooting]
 +
:- [https://help.fortinet.com/fos50hlp/54/Content/FortiOS/fortigate-WAN-opt-54/diags.htm Diagnose]
 +
:- [https://sites.google.com/a/futurewest.ca/tech/journal-blog/fortigateflashfailure fortigateflashfailure]
 +
:- [https://nextnextnextfinished.wordpress.com/2011/03/03/fortigate-flash-memory-errors/ Flash Errors]
 +
:- [https://www.reddit.com/r/fortinet/comments/5i3hyg/flash_scann_on_a_ftg40c/ flash_scann]
 +
:- [https://docs.fortinet.com/uploaded/files/1708/Resetting_a_lost_admin_password.pdf]
 +
:- [https://wiki.diagnose.fortinet.com/index.php/Running_an_HQIP_(Hardware_Quick_Inspection_Package)_test hqip]
 +
:- [https://wiki.diagnose.fortinet.com/index.php/Overview over]
 +
:- [https://kb.fortinet.com/kb/documentLink.do?externalID=FD34745  hqip help]
  
 +
;Upgrading Fortigate Firewall
 +
 +
    get system status
 +
 +
:- update path [https://docs.fortinet.com/uploaded/files/1965/Supported%20Upgrade%20Paths%20for%20FortiOS%20Firmware%205.2.pdf]
 +
:- Upgrading FortiOS [https://cookbook.fortinet.com/sysadmins-notebook/supported-upgrade-paths-fortios/ Supported Update Paths FortiOS]
 +
:- Firmware per TFTP [https://kb.fortinet.com/kb/viewContent.do?externalId=10338 Anleitung]
 +
:- Download firmware [https://www.reddit.com/r/fortinet/comments/592uua/need_firmware_images_for_fortigate_and_fortiwifi/ ] If you register the device to your account and sign up for the free trial of FortiGuard services, you'll get access to the firmware downloads for a month.
 +
:- Download Server nicht von Fortigate, es gibt es doch: [http://downloads.landynamix.co.za/Fortinet/Firmware/FortiGate/40C/ Hier für 40C ]
 +
:- Download Server [http://downloads.landynamix.co.za/Fortinet/Firmware/ FTP Download Seite]
 +
:- Factory Reset CLI [https://kb.fortinet.com/kb/documentLink.do?externalID=FD37052 exec factoryreset  ]
 +
:- [https://kb.fortinet.com/kb/viewContent.do?externalId=FD39581&sliceId=1]
 +
 +
 +
    exec factoryreset
  
;Upgrading FortiOS
+
;Product Life Cycle Fortigate 40C
  
[https://cookbook.fortinet.com/sysadmins-notebook/supported-upgrade-paths-fortios/  Upgrading FortiOS]
+
Dear Paul
 +
There is a link in support.fortinet.com with name "Product Life Cycle".
 +
It shows that when Fortinet stops support of all models.
 +
Your product is not in this list yet.I think it will be add tomorrow.
 +
But because it's similar to  20C I copy details of this model from that link:
 +
ProductLast Order Date (LOD) End of Order (EOO)Last Date to Extend Maintenance ContractsEnd-of-SupportFortiGate-20C2014-08-162018-08-162019-08-16I think Fortinet stops producing this model today. But you still can have any order of this model for 2 or 3 month.
 +
Also firmware supports will be continue after 4 years.
 +
You can order any FortiGuard services until end of 2020.
 +
It means "Product Life Cycle" .
  
    get system status
+
Quelle: [https://forum.fortinet.com/tm.aspx?m=116542 Link]
 +
 
 +
 
 +
;WLAN FAP221C
 +
 
 +
:Recommended VersionFP221C-v5.2-build0265
 +
:FP221C3X15033214
  
  
 +
== Serial (COM) Verbindung ==
 +
Mit MobaXterm
  
; Anleitung [https://kb.fortinet.com/kb/viewContent.do?externalId=10338 Firmware per TFTP]
 
  
; [https://blog.webernetz.net/cli-commands-for-troubleshooting-fortigate-firewalls/ troubleshooting]
+
: Lösung ist also connecten per RJ45 - DB9 Kabel.
 +
  Bits per Seconds 9600,
 +
  Data Bits 8 
 +
  Parity none,
 +
  Stop Bits 1,
 +
  Flow Control 1 einstellen.  
  
; [https://help.fortinet.com/fos50hlp/54/Content/FortiOS/fortigate-WAN-opt-54/diags.htm diags]
+
Firewall neu starten
  
; [https://www.reddit.com/r/fortinet/comments/592uua/need_firmware_images_for_fortigate_and_fortiwifi/ Download firmware]
 
If you register the device to your account and sign up for the free trial of FortiGuard services, you'll get access to the firmware downloads for a month.
 
  
Es gibt es doch:
+
  FortiGate-40C (12:29-05.08.2013)
[http://downloads.landynamix.co.za/Fortinet/Firmware/FortiGate/40C/ Hier ]
+
  Ver:04000009
 +
  Serial number: FGT40C3913005347
 +
  CPU(00): 525MHz
 +
  Total RAM: 512MB
 +
  Initializing boot device...
 +
  Initializing MAC... nplite#0
 +
  Press any key to display configuration menu
  
; [https://kb.fortinet.com/kb/documentLink.do?externalID=FD37052 exec factoryreset ]
+
  [G]: Get firmware image from TFTP server.
 +
  [F]:  Format boot device.
 +
  [I]:  Configuration and information.
 +
  [B]: Boot with backup firmware and set as default.
 +
  [Q]:  Quit menu and continue to boot.
 +
  [H]:  Display this list of options.
  
    exec factoryreset
+
  Enter G,F,I,B,Q,or H:
  
; [http://help.fortinet.com/fdb/5-0-0/html/index.html Help]
+
  Please connect TFTP server to Ethernet port '5'.
  
;[http://help.fortinet.com/fdb/5-0-0/html/source/tasks/t_network_configuration_cli.html Network]
+
  Enter TFTP server address [192.168.1.168]: 10.100.33.1
 +
  Enter local address [192.168.1.188]: 10.100.33.39
 +
  Enter firmware image file name [image.out]: image.out
 +
  MAC: 08:5b:0e:09:8f:a8
  
;DHCP servers and relays
+
  Connect to tftp server 10.100.13.1 ...
 +
  ######################################################
 +
  Image Received.
 +
  Checking image... OK
 +
  Save as Default firmware/Backup firmware/Run image without saving:[D/B/R]?D
  
[https://help.fortinet.com/fos50hlp/54/Content/FortiOS/fortigate-networking-54/Interfaces/DHCP%20servers%20and%20relays.htm Link]
+
  Programming the boot device now.
 +
  .................................................................
 +
  Reading boot image... 1088004 bytes.
 +
  Initializing firewall...
  
  config system dhcp server
 
 
 
    show
 
  
 +
  System is starting...
 +
  Starting system maintenance...
 +
  Scanning /dev/sda1... (100%)
 +
  Formatting shared data partition ... done!
  
Fortigate 40C
+
  FGT40C3913005347 login: admin
 +
  Password: leerrrrrrrrrrrrrrrrrrrrrrr....!!!!!!!!!!!!!!
 +
  Welcome !
  
Dear Paul
+
FGT40C3913005347 #
There is a link in support.fortinet.com with name "Product Life Cycle".
 
It shows that when Fortinet stops support of all models.
 
Your product is not in this list yet.I think it will be add tomorrow.
 
But because it's similar to  20C I copy details of this model from that link:
 
ProductLast Order Date (LOD) End of Order (EOO)Last Date to Extend Maintenance ContractsEnd-of-SupportFortiGate-20C2014-08-162018-08-162019-08-16I think Fortinet stops producing this model today. But you still can have any order of this model for 2 or 3 month.
 
Also firmware supports will be continue after 4 years.
 
You can order any FortiGuard services until end of 2020.
 
It means "Product Life Cycle" .
 
  
[https://forum.fortinet.com/tm.aspx?m=116542 Link]
 
  
 +
IP Konfigurieren
  
;News
+
https://help.fortinet.com/fdb/5-0-0/html/source/tasks/t_network_configuration_cli.html
[https://www.sonicwall.com/en-us/about-sonicwall/news Sonicwall News]
 

Aktuelle Version vom 30. April 2020, 14:25 Uhr


News

Fortinet Newsroom

Kabel für CONSOLE

Serial cable pinouts for console access

Youtube

Replacing Old ASA With FortiGate 1500D

Allgemein
- Admin Guides
- Help
Einrichtung und Konfiguration
- SSL VPN Konfig SSL VPN
- Network Konfig Network
- DHCP servers and relays Konfig DHCP
- VoIP-ALG Konfig VoIP-ALG
  config system dhcp server 
  
   show
Fehler, Troubleshooting, Disgnose
- Technical Note: FortiGate or FortiClient Enterprise Management Server (EMS) not found
- Troubleshooting
- Diagnose
- fortigateflashfailure
- Flash Errors
- flash_scann
- [1]
- hqip
- over
- hqip help
Upgrading Fortigate Firewall
   get system status
- update path [2]
- Upgrading FortiOS Supported Update Paths FortiOS
- Firmware per TFTP Anleitung
- Download firmware [3] If you register the device to your account and sign up for the free trial of FortiGuard services, you'll get access to the firmware downloads for a month.
- Download Server nicht von Fortigate, es gibt es doch: Hier für 40C
- Download Server FTP Download Seite
- Factory Reset CLI exec factoryreset
- [4]


    exec factoryreset
Product Life Cycle Fortigate 40C

Dear Paul There is a link in support.fortinet.com with name "Product Life Cycle". It shows that when Fortinet stops support of all models. Your product is not in this list yet.I think it will be add tomorrow. But because it's similar to 20C I copy details of this model from that link: ProductLast Order Date (LOD) End of Order (EOO)Last Date to Extend Maintenance ContractsEnd-of-SupportFortiGate-20C2014-08-162018-08-162019-08-16I think Fortinet stops producing this model today. But you still can have any order of this model for 2 or 3 month. Also firmware supports will be continue after 4 years. You can order any FortiGuard services until end of 2020. It means "Product Life Cycle" .

Quelle: Link


WLAN FAP221C
Recommended VersionFP221C-v5.2-build0265
FP221C3X15033214


Serial (COM) Verbindung

Mit MobaXterm


Lösung ist also connecten per RJ45 - DB9 Kabel.
  Bits per Seconds 9600, 
  Data Bits 8  
  Parity none, 
  Stop Bits 1, 
  Flow Control 1 einstellen. 

Firewall neu starten


  FortiGate-40C (12:29-05.08.2013)
  Ver:04000009
  Serial number: FGT40C3913005347
  CPU(00): 525MHz
  Total RAM: 512MB
  Initializing boot device...
  Initializing MAC... nplite#0
  Press any key to display configuration menu
 [G]:  Get firmware image from TFTP server.
 [F]:  Format boot device.
 [I]:  Configuration and information.
 [B]:  Boot with backup firmware and set as default.
 [Q]:  Quit menu and continue to boot.
 [H]:  Display this list of options.
 Enter G,F,I,B,Q,or H:
 Please connect TFTP server to Ethernet port '5'.
 Enter TFTP server address [192.168.1.168]: 10.100.33.1
 Enter local address [192.168.1.188]: 10.100.33.39
 Enter firmware image file name [image.out]: image.out
 MAC: 08:5b:0e:09:8f:a8
 Connect to tftp server 10.100.13.1 ...
  ######################################################
 Image Received.
 Checking image... OK
 Save as Default firmware/Backup firmware/Run image without saving:[D/B/R]?D
 Programming the boot device now.
 .................................................................
 Reading boot image... 1088004 bytes.
 Initializing firewall...


 System is starting...
 Starting system maintenance...
 Scanning /dev/sda1... (100%)
 Formatting shared data partition ... done!
 FGT40C3913005347 login: admin
 Password: leerrrrrrrrrrrrrrrrrrrrrrr....!!!!!!!!!!!!!!
 Welcome !

FGT40C3913005347 #


IP Konfigurieren

https://help.fortinet.com/fdb/5-0-0/html/source/tasks/t_network_configuration_cli.html