UTM - Tratamento Unificado de Ameaças
FortiExplorer - acesso usb
Alterar a senha
login: admin
Password: <Press_Enter>
....
New Password: <NEW_PASS>
Confirm Password: <NEW_PASS>
Configurar a interface port1
# config system interface
edit port1
set mode static
set ip <IP> <MASC>
set allowaccess ping http https
end
# get system interface | grep "port1" <- mostra os endereços IP configurados.
Comando para avaliar os status do equipamento.
# get system status
Mostra as configurações para uma porta
# show system interface port1
config system interface
edit "port1"
set vdom "root"
set type physical
set role lan
set snmp-index 3
next
end
Testar ping por uma porta especifica
# exec ping-options interface port5 <- Força execução ping na porta5
# exec ping www.uol.com.br
# exec ping-options interface auto <- Volta ao padrão
Monitoramento de log
# diag debug reset
# diag debug enable
# diag debug flow filter <addr/saddr/daddr> <IP>
# diag debug flow filter <port/sport/dport> <IP> <- Opcional
# diag debug flow show console enable <-rever
# diag debug flow trace start 100
# diag debug disable
---------------------
diagnose log test
execute log display
get log gui
get log disk setting
get log disk filter
get log memory setting
get log memory filter
get log fortianalyzer setting
get log fortianalyzer filter
execute log fortianalyzer test-connectivity
---------------------
syslog cyberoam iview fortigate
exe log display
exe log filter
Webtrends
fnsysctl ifconfig
fnsysctl ps
fnsysctl df
------------------------------------------
https://sites.google.com/site/cursoccnabh/
https://www.youtube.com/watch?v=xJEln9vBl9w
https://gns3.com/support/docs/virtual-machines-supported-2
filtro top down
Habilita cental nat
set gui-central-nat-table enable
PARTE 02
get system arp
get router info routing-table all
show system interface
show firewall policy
Sniffer
diagnose sniffer packet <INT origem> ‘dst host 8.8.8.8’ <1-6>
http://kb.fortinet.com/kb/viewContent.do?externalId=11186
diag sys session list
diag sys session filter
diag sys session filter dst 8.8.8.8
diag sys session filter 80
diag sys session filter list
diag sys session filter clear
diag sys session-helper
exec formatlogdisk
get system status
fnsysctl fdisk /dev/sdb
------------------------------------------
remover porta 22 do firewall do EXP18
netstat -ano | findstr 49152 389
diagnose debug application fnbamd -1
diagnose debug enable
http://kb.fortinet.com/kb/documentLink.do?externalID=13141
http://kb.fortinet.com/kb/viewAttachment.do?attachID=LDAP_confi_examples.pdf&documentID=10963
------------------------------------------
http://wiki-fortigate.blogspot.com.br/2015/07/ssl-vpn.html
http://wiki-fortigate.blogspot.com.br/2015/07/
https://www.mylesgray.com/infrastructure/
FIM --------------------------------------------------------------------
https://www.youtube.com/results?search_query=ccna+r%26s+curso+completo