FortiGate FortiOS 7.2.4 Walk Through

Can I hire you for a project ASAP?

I hope to see you bavk soon! We miss you !

Hi Mike, can you please make a Video about config a fortiswitch without using Fortilink Management. Radius Authentication, Auto VLAN etc.

Thanks Mike! Your videos have helped me tremendously throughout the year. I have been struggling with one thing for several weeks, and that's configuring FortiAP's to use Azure AD SSO authentication to connect to the SSID. I've done and redone everything in the documentation several times, but there's obviously something I'm missing and the Fortinet support team have NOT been helpful. Do you have a video on that?

Good to see you again, just deployed my first full Fortistack and I’m very happy. The Switch Clients view make me want to go to 7.2

So I work for a major MSP. We pretty much exclusively deploy Fortinet equipment. Fortinet is really cool because they sent any of the engineers in our company that competed NSE 1, 2, and 3 a free FortiGate 70F with a free year of support and licensing for all of the things. But, the frustrating thing is since the 70F is using the new silicon, I can't update to v7.4.x. lol But, I love using my FortiGate at home and a few of us have an IPSec VPN connection together that we use to play some retro games together. The bad side is, now I'm hooked and I want to buy a FortiSwitch and some FortiAPs. lol

EDIT: Well, nevermind, I just looked on my FortiGate and the update is available now. lol But, it hasn't been for a while since release.

Dude, I've learned a good bit about Fortinet from your content thanks a ton!

Thanks for the video.
Can I ask would you recommend allowing UDP on 443 outbound? We have blocked mostly everything outbound except the essential services / ports.
sounds like 7.2.4 can analyze the QUIC protocol - but I might have that all wrong!
Thanks

Hi Mike, I am so glad every time I see your face. You are the real face of Fortinet UTMs 😁

Any insight to failure rate? In 2 years, i had 280 RMA's.

Great content as always. Thank you

Are the firewall policies reciprocal? I noticed that the only policy I get marked traffic through is the default LAN2WAN. When I set up a matching poilicy of WAN2LAN, it sits at 0kb throughput.

hi i have fortinet FAP-421E-E can you help how can i use as standalone wifi AP so i can able to used in home if we use linksys router we can configer very easly thright web page. dos the AP have its configertion page or i have to attached an other device to to run FAP-421E-E .

I loaded a client on 7.2.4 on a 40F, configured base policies (learned from your channel) and had a memory leak :( rolled back to 7.2.1. Aware of the CVE's but it's been stable so far.

I really need some help with a ssl vpn I’m trying to setup on a fortigate 60f at work. I’ve tried many configurations but can only seem to connect to the vpn when I am on the local network. I am unable to connect when on an outside network. Any help would be appreciated!

Given the interface changes since the last time you did something along these lines how about a training video on setting up a new FortiGate using your best practices. Doing it with a SD Wan would be even better.

This shit version is consuming a lot of memory and get conserve mode all time.

Love your videos the way explain it simple and nice. I want to ask a question, i have a ipsec tunnel showing error connection expiring due to phase1 down how to fix it?

very nice explanation sir :D

Nice guides, love it.
I'm new to Fortigates, comming from Palo Alto, so i have a Fortigate VM for my homelab, but thinking about using it as primary firewall, so i can get some data in it.
And i saw that you had a few xbox's.
How have you managed to get the NAT Type to open or moderate, do you have several public ip's and do 1:1 NAT on them or are there some dynamical options that works, or do you manually create rules and forward ports for each game that requires it?

And also, awesome work 👍

Very helpful walkthrough.

I'm stepping into the FortiGate ecosystem soon and am trying to familiarize myself as much as I can.

I do have one question: In your opinion does it make any sense to try and wait for the next series of Fortigate devices? It's been 2-3 years since the F series came out and I would like to maximize the lifecycle of the device.

Today I went to configure a SD-WAN rule on my 60F and I wasn't able to select the application from the GUI.
I had to chose the application from the CLI using a number, it was super frustrating.
Had same issue with the traffic shapers using application detection.

Good video. I had to setup a 60F with 4 FortiSwitches. I created a second fortilink interface in the CLI for the untrusted pair of switches. Was my first time using Forti, one thing that I struggled with was getting the WAN to work from a switch interface, wasn't using the wan on the FortiGate. Dual wan transit cables from the DC to each untrusted switch, in the end I used a VLAN and static routing. But wondering if there was a way to have brought the switch interface back directly to the network interface list or if I could have improved the design. Great videos they helped me a lot thank you.

Thanks Mike, I first jumped into fortinet equipment about a yr ago for a new work site, I had three months to learn everything possible to get it going before staff moved in, I usually get pretty excited working with new gear so enjoyed the challenge. This year we changed more sites turning over to fortinet so its been pretty busy.

Thanks, Mike! wish to see more hands-on labs🙏

If any of you have FG1800Fs, Do not update to this firmware, including 7.2.3. This has been my headache for weeks now and Fortinet Support is not really helpful and really clueless with the High CPU and Memory bugs we've encountered. Had to downgrade to 6.4.12.

Can you do a video with an AWS environment? Would like to so see a fortimanager connected to a Fortigate in fips mode… plus the fortianalyzer features!

I love your videos m8, so straight to the point. Thanks for the great work around the fortigates

Nice walkthrough! and welcome back :D

Great update on 7.2.4. I'm an SE at Fortinet and I like all your videos and how well you explain the tech.

Hey Mike, good to see you're back, i thought you gave up on Fortinet. Just wondering since you mention you'll be ramping up more videos again in the future, would you ever cover the ET products of Fortinet? Like FortiNAC? FortiProxy? FortiWeb? Or even FortiPAM?

Killer Alien shirt!

I miss your how-to videos.
I like to see one showing how to setup LetsEncrypt.

I am a huge fan of tenacious D, you’re amazing Jack!

Thanks for this nice Feature Walktrough. Very interesting!

Nice walktrhough Mike!! Regards from Argentina 👌😉

Mike! where you been? you need some extra hands? relatively close to WDE

Mike nice to see you refreshing the channel content. I've been staying on 6.4 but the time is coming to go to 7.x due to End of Engineering supporting coming up for 6.4 so it's cool seeing what's new on the bleeding edge of 7.2. I would be curious if you would interested in making some content around combing SDWAN and IPSec VPNS. A good example, is many organizations have multiple WANS. AWS by default gives you two peers for each WAN. I think it would pretty cool to see SDWAN driving traffic in this scenario and checking each VPN peer is alive. Content has been very helpful over the years thanks!

Mike, is 7_2_4 solid now or should I remain on 6_4_12?

Thanks for the overview Mikey! Such a good thorough run through. Big new take aways for me are the abilities for tieing authentication to local ad or potentially azure ad, as well as the new let's encrypt integration for certificates.

Would love to see a walkthrough on how you do either or both of those if you are looking for video ideas.

I switched to Fortinet from a horrible german security vendor about a year ago. Your videos and especially your blog posts helped me a lot. Thanks!

Nice beard growth !

Great job,.. thankyou for all the great videos. 👍🏼

Thanks for being you!

Fantastic 30,000” view. About to make this mandatory viewing for my team.

what are your thoughts on the SSL VPN bug IDs for 7.2.4?

Good video !! Looks like they are making it nicer and nicer..

Hi Mike! Do you have a video of how to configure SD-WAN while using FortiManager and IPSec tunnels between devices? I have a hub spoke network and want to add a second ISP to the HQ site. Since both sides are controlled by FortiGate's, I should have more freedom to aggregate IPSec traffic over both WANs, right?

Hey! He is still alive! Good to see you, Mike.

Nice video! Well done 👏