Category Archives: VPN

IPv6 VPNs in Fortigate Firewalls

I have two Fortigate 140Es in my environment.  SecPrimate-01 and SecPrimate-02.  The SecPrimate-01 is using the Mariner color while the…

By Manny Fernandez

October 20, 2019

Adding DNS Suffix to your SSL VPN

Many times you set up an SSL VPN connection to the office and you try to connect to mail however, even…

By Manny Fernandez

September 10, 2019

Using Let’sEncrypt with Fortigate Firewalls

Wanted to socialize this important Blog Post from my friend and colleague Matt Sherif.  In this post, he describes how…

By Manny Fernandez

September 9, 2019

VPN Hair-Pinning on Fortigate Firewalls

Here is an issue I get questions about all the time. Use Case Customer has two VPNs. Customer wants to…

By Manny Fernandez

September 3, 2019

Single Sign On with Fortigate VPN

As many of you know, RDP (Remote Desktop) is a huge problem today.  Some of my customers demand that we…

By Manny Fernandez

August 27, 2019

Installing FortiClient on Ubuntu Linux for SSL VPN

I ran Windows as my main Desktop OS for many years.  When XP came out, I decided to move to…

By Manny Fernandez

August 11, 2019

Fortitoken Push Notification without FortiAuthenticator

One of the great features of the Fortigate Firewall platform is its versatility.  Aside from having an Ethernet Switch and…

By Manny Fernandez

July 15, 2019

UPDATED – Certificate Pinning you SSL VPN with Microsoft CA and Fortigate Forticlient Using ‘user’ certificates

Customer wanted to ONLY allow devices that are trusted devices (owned by the customer) to connect using the ‘Full Access”…

By Manny Fernandez

May 15, 2019

Secure LDAP and AD Password Change via Forticlient

First of all, I wanted to give credit to a good friend of mine (Brian Modlin) that hit me up…

By Manny Fernandez

April 20, 2019

Configuring LDAP Authentication for Remote Access VPN

The Fortigate platform allows for multiple authentication options for VPNs.  In the past, I used a lot of Cisco ASA…

By Manny Fernandez

April 9, 2019

Site-to-Site VPN Between Fortigates using Certificates instead of PSK

Had a customer running Checkpoint that needed to create a Site-to-Site VPN using a dynamic IP on the remote (Fortigate)…

By Manny Fernandez

February 11, 2019

Multi-Regional AD VPN using Fortigate Firewalls and BGP

Disclaimer: This was a client installation. All names and locations have been changed to protect the privacy of the customer.…

By Manny Fernandez

December 20, 2018

IKEv2 Dynamic Remote Fortigate to Head-In ASA

Customer had a Cisco ASA 5516-X that we used to replace aging 5510’s. I told the customer that we would…

By Manny Fernandez

September 1, 2018

Remote Access VPN with ASA as a client

Today I had a customer that was buying two Fortigate 500Es for their datacenter but had some remote offices outside…

By Manny Fernandez

May 22, 2018

IKEv1 & IKEv2

I have been dealing with VPNs for the past 20 Years. Primarily I have used IKEv1 as it was the…

By Manny Fernandez

December 1, 2017

Persistent VPN Profiles in AnyConnect

If you are like me that connects to a multitude of customer's networks using AnyConnect, you know the headache of…

By Manny Fernandez

January 24, 2017

Uninstalling Web Security from AnyConnect for Mac

You ever had that annoying Web Security pop up using AnyConnect? I did and I kept saying to myself “…

By Manny Fernandez

January 22, 2017

VPNs on Fortinet Fortigate

  Yesterday I had to troubleshoot a bunch of VPNs on a Fortigate. It was a migration from ASA to…

By Manny Fernandez

November 26, 2016

Creating a Certificate Signing Request on the ASA

First things first; check the time on your ASA.  You can do this with the following command: show clock If…

By Manny Fernandez

November 1, 2016

Categories

Recent posts

  • Had a customer with over 200 static routes on... Full Story

  • This is a work in progress, I will be... Full Story

  • I have been playing with the free version of... Full Story