Deploying FortiGate Load Balance Health Check Monitors for High-Availability Virtual Servers
Manny Fernandez1. Executive Summary Objective: This guide documents how to build, apply, and validate Load Balance Monitors (config firewall ldb-monitor) on...
Read More
Detecting Bettercap on the Wire: Building a Blue-Team Lab to Identify and Alert on Layer-2 MitM Activity
Manny Fernandez1. Objective This guide builds an isolated detection lab and walks through identifying the network artifacts that Bettercap and similar...
Read More
Impacket Scripts Explained: A Practitioner’s Field Guide to the Toolkit Every Defender Should Recognize
Manny FernandezIf you have spent any time in a SOC, on a red team, or staring at a packet capture trying...
Read More
Deploying FortiGate Public SDN Connectors for AWS: Dynamic Address Automation at Scale
Manny Fernandez1. Executive Summary Objective: This guide walks through configuring a FortiGate Public SDN (Software-Defined Networking) Connector for Amazon Web Services...
Read More
What Is EVPN and VXLAN? A Practitioner’s Primer
Manny FernandezA vendor-neutral deep dive into the control plane and the data plane that modern overlay networks are built on.* Why...
Read More
The Most Common USB Plugs and Their Names: A Practitioner’s Field Guide
Manny FernandezIf you have ever dug through a drawer full of cables trying to find the one that actually fits the...
Read More
Know Your Plugs: A Practitioner’s Guide to Common AC Connectors
Manny FernandezIn this article, I will cover the basic AC plugs you are bound to run into. In "Know Your Plugs:...
Read More
OSPF Primer: Message Types, Areas, and FortiGate Troubleshooting
Manny FernandezOSPF (Open Shortest Path First) is a link-state IGP that every network engineer eventually has to actually understand rather than...
Read More
The Fortinet Support Tool: Installation and Use A practitioner guide to capturing GUI debug data for FortiCare tickets
Manny FernandezWhat the Fortinet Support Tool Actually Is There are two different things people mean when they say "Fortinet support tool,"...
Read More
Deploying Cacti with NetFlow Support on Ubuntu Linux: Configuring Cisco, Fortinet and Juniper for Netflow
Manny FernandezA step-by-step deployment and configuration guide for building a Cacti monitoring server with the FlowView plugin for NetFlow, sFlow, and...
Read More
Deploying NetFlow and sFlow on FortiGate (FortiOS 8.0) for Network Traffic Visibility with Cacti and FlowView
Manny Fernandez1. Title and Executive Summary Objective: This guide walks you through configuring both NetFlow v9 and sFlow v5 export on...
Read More
Securing the Gate with Security Profiles Series: Web Rating Override and Web Profile Override on the FortiGate Firewall
Manny Fernandez1. The two features people keep confusing FortiOS ships two Web Filter capabilities whose names sound nearly identical but solve...
Read More
FortiGate Threat Weight Tracking A practitioner guide to risk scoring, configuration, and tuning in FortiOS 7.x and 8.x
Manny Fernandez1. What Threat Weight Tracking Is Threat Weight (sometimes called Threat Weight Tracking or Client Reputation in older code) is...
Read More
FortiGate Security Rating and Vulnerabilities Tab: A Practical Walkthrough
Manny Fernandez1. What Security Rating Actually Does Security Rating is a built-in posture assessment engine that runs on the root FortiGate of...
Read More
Deploying Workflow Management on FortiGate: A practitioner deployment guide for policy change summaries, audit trails, and policy expiration
Manny FernandezWhat Workflow Management Actually Is On the FortiGate, "Workflow Management" is not an approval-routing engine. It is a System Settings...
Read More
FortiGate WIDS: A Practical Deployment and Tuning Guide
Manny Fernandez1. High-Level Overview The FortiGate Wireless Intrusion Detection System (WIDS) is the radio-frequency monitoring engine built into the FortiGate wireless...
Read More
MIMO, 2×2 vs 4×4, and WiFi Standards: A Technical “Shallow” Dive
Manny FernandezWhat MIMO Actually Does Multiple Input, Multiple Output (MIMO) is the technique of using more than one antenna at both...
Read More
The FortiOS Commands the Admin Guide Forgot
Manny FernandezA practitioner's tour of the diagnose, test, and fnsysctl corners of FortiOS that never made it into the official documentation....
Read More
FortiGate Firewall Scheduling Deployment Guide: How to configure and use Schedules
Manny FernandezOverview FortiGate firewall schedules control *when* a firewall policy is active. Every firewall policy references a schedule object, and by...
Read More
FortiGate AntiSpam Security Profile Deployment Guide
Manny FernandezOverview On FortiGate, AntiSpam is delivered through the Email Filter security profile, powered by the FortiGuard AntiSpam service. The FortiGate...
Read More
