Using FortiManager Series: Adding MORE FortiGates & Policy Packages Advanced PT4
HTML-код
- Опубликовано: 24 июл 2024
- In this video, we continue on from Part 3 by adding more FortiGates using different FortiManager onboarding methods and demonstrating how policy packages would be utilized in a production environment.
* The release of these videos is super fast-paced with 1/2 a day for the next week so look out for the next in the series! I might already be released!
// Timestamps //
00:00 - Watch the previous videos!
00:30 - Quick recap
01:37 - Subscriber Plea! (Let's reach 1000 by 01/01/2024)
02:11 - Quickly covering the ability to attach a FortiGate to FortiManager on Provisioning
02:48 - Different Licensing Method (BYOL instead of PAYG)
03:45 - Logging into the newly provisioned gate and checking FortiManager Configuration
04:00 - Checking the automated FortiManager Configuration
04:28 - Applying Policy Package on Device On-Boarding to FortiManager
05:30 - Checking that the Policy Package has been applied
05:51 - Overview of the current state of play
06:58 - Demonstration of amending a single policy package and applying it to many devices\
08:08 - Confirming changes have been made to all devices
08:32 - Overview of the power and purpose of policy packages
08:50 - Community Question Two Policy Packages? on a single FortiGate
10:28 - Video Wrap-Up & Next Video
// Chris SOCIAL //
/ chris-eddisford-5b676462
// Keywords //
Fortinet Training
FortiManager
FortiManager Tutorial
FortiCloud
FortiGateTraining
FortiManager Training
Policy Package
ADOM
FortiGate
FortiSwitch
FortiClient
Fortinet Home Worker
Fortigate SSL VPN
Fortgate ZTNA
Fortigate IPSEC
Fortigate ADVPN
FortiGate
FortiGate How To?
Fortinet NSE4
Fortinet NSE7
Fortinet FCP
// HashTags //
#cybersecurity
#networking
#fortinet
This is a really good series. Are you able to “chain” policies together? So for example you have 1 policy that is applied to a device but this one policy pulls from multiple “child” policies.
Hi Steven, Thanks for reaching out! You can only have "one" policy applied to each device. I showed trying to add another in one of the videos in the series. What you can do is only have a specifc policy from within a policy package installed to certain devices only (Ill try and cover that in future videos) On some FortiManager platforms (On-Prem) there is something called a "Global Policy Packages" they can be applied to multiple ADOM's more information on what they do can be found here - docs.fortinet.com/document/fortimanager/7.4.1/administration-guide/601905/global-policy-packages
thank you for the demonstration. I have a question regarding my setup. I have FMG 7.4.1 VM and FG 7.4.1 on VMWare. both are on same subnet, FG is managed by FMG without issue. Sometimes when I install fw policy to FG, I get this error message at the end
"install and save finished status=FAILED" even though policy is successfully found on FG. Is there anything I am doing wrong?
Hey its hard to say but I'd suggest looking into the report when the package fails to install or in the "Event Log" that should contain more information. If you can post that up here we can take a look together.
Also try these commands before you do the configuration change and then look at the output after you have done it "diag debug application securityconsole 255" and "diag debug enable"
I am sure you figured it out by now. I had the same problem. Allow jumbo frames in the policy was the answer.
I will try that, thank you for the information :) I would never expect that
@@ThomasPotter-ow4cq