My take on IPv6 allocation! Becoming a LIR @ RIPE
- No Comments
- Aug, 23, 2018
- Angelo Schalley
- Cisco, Fortigate/Fortinet, IPv6, Networking
When you become a LIR @ RIPE you will get a /32 IPv6 network allocation. If you ask nicely ( which I did 🙂 ), you will get a /29 IPv6 network allocation.
That is a whole lot of address and it can become somewhat overwhelming by it’s size.
Read more on My take on IPv6 allocation! Becoming a LIR @ RIPE…
Fortigate Technical : when a general internet policy conflicts with an incoming VIP
- No Comments
- Aug, 07, 2018
- Angelo Schalley
- Fortigate/Fortinet, Networking, security
I ran into the following problem when configuring a Fortigate Firewall.
I created a general purpose internet rule on the Fortigate. Which looks like this:
Internal networks – to – Internet // protocols : tcp/80/443
Read more on Fortigate Technical : when a general internet policy conflicts with an incoming VIP…
enable sni on a fortiweb for back-end servers in a ADFS configuration
- No Comments
- Jul, 21, 2017
- Angelo Schalley
- adfs/saml, Fortigate/Fortinet, FortiWeb, Networking, security
Configuring server-side SNI support (needed for Microsoft ADFS)
FortiWeb supports server-side SNI (Server Name Indication). You use this feature when you have the following configuration requirements:
The operating mode is reverse proxy or true transparent proxy.
You offload SSL/TLS processing to FortiWeb and use SSL/TLS for connections between FortiWeb and the pool member (end-to-end encryption).
One or more server pool members require SNI support.
Read more on enable sni on a fortiweb for back-end servers in a ADFS configuration…
Categories
