Fortinet

From Igor personal wiki
Jump to: navigation, search 
configre system interface

edit port 

show

show system interface



diagnose sniffer packet port1 "host 172.20.1.100"


DHCP Service[edit]

The DHCP service is configured on the FortiGate interface. Everything can be managed on FortiManager except the DHCP custom options.

Option 43 was set to 010400000002 to disable NetBios on the workstations segment as per this article: http://www.astorinonetworks.com/2011/09/09/disabling-nbt-via-dhcp-option-43/

The configuration has been applied manually on the FortiGate's CC VDOM like this: 

yul01fwfe_primary (1) # show
config system dhcp server
   edit 1
       set forticlient-on-net-status disable
       set default-gateway 10.1.50.1
       set netmask 255.255.255.0
       set interface "Vlan701"
           config ip-range
               edit 1
                   set start-ip 10.1.50.100
                   set end-ip 10.1.50.199
               next
           end
       set option1 43 '010400000002'
       set dns-server1 10.1.200.11
   next
end
Retrieved from "http://wiki.it-security.ca/404.html"