Fortify | Blog Bujarra.com

Allowing specific users to escape Fortigate's web filtering

Well, I think I already said that I'm going to try to bring curious posts, that can contribute something to the organization, Today it was a bit of a topic that usually comes up on occasion. As it is taken for granted that we have the navigation controlled with our Fortigate, where we will have our rules with different accesses… Well, today we will see how to allow certain users to navigate under their responsibility in areas that we alert them as dangerous…

Protegiendonos de ataques y botnets en Fortigate

Something fundamental that we can do in our infrastructures is to tell our perimeter firewalls to block any attempt to access our organizations from malicious networks, Botnet networks, by reputations, or IP addresses that may be on blocklists or blacklists, among others, to avoid unnecessary 😉 risks

Monitoring our firewall's web UTM rules thanks to Centreon

A short time ago we posted a very similar post, where we checked the UTM rules to see if a virus would sneak in. Today it is time to supervise that certain web content to which our dear users should not have access, Well, don't have it. This is, monitor that betting sites are effectively inaccessible, Pornographic, Social Media…

Automated backup of Fortigate configuration

Very good, I wanted to share this little tip for all those who don't know him, The truth is that it is something very simple and does not cost anything, The Goal, that our Fortigate firewall is backed up in an automated way with the schedule we want.

Connecting a Linux to a Fortigate IPSEC VPN

In this document we are going to try to describe all the steps we will need to connect a Linux machine to a VPN that is offering a Fortigate, in this case an IPSEC VPN. A post that I hope does not harbor much mystery.

Connecting a Linux to a Fortigate SSL VPN

In this post we will see how easy it is to install the Fortigate VPN client for Linux and how to connect, I'm not a friend of VPNs, But sometimes it's time… So if you have a Fortigate VPN-SSL already created and want to connect, This is your post!

Implementing FSSOs to integrate Fortigate with Active Directory

In any organization where there is (at least) a Fortigate and also an Active Directory, This is a must. This integration will allow us to, among others,, as adding AD users or groups to firewall rules, or at the record level, Audits, Threat Prevention… Well, having the user's detail.

Passing Crowdsec blocklists to our Fortigate firewall

Have I ever told you that Crowdsec is a marvel?? 😛 for any type of company… that will protect us from external or internal attacks! It's not a turkey snot.! Crowdsec teams will share a blacklist of IPs, So when a team is attacked, the rest will be protected. But it is also that, This blacklist can be sent to our perimeter firewall, so that he may protect us!

Monitoring a Fortigate Firewall from Centreon

In this post we will see how to monitor our Fortigate firewalls from a Centreon or Nagios or whatever we have 🙂. We will do it through SNMP queries and we will be able to know the status of its chassis at all times, the status of the cluster if we have one, the use and consumption of network interfaces, if we have VPNs the same, know if they fall, The sessions, etc, etc… if you have a Fortigate, This is your post!

Fortigate VM

For all those who don't know him here's this post, Introducing the Fortinet Virtual Appliance, the Fortigate-VM firewall, in virtual machine format will provide us with all the advantages of having the Fortigate firewall virtualized in our network (high availability, Cross-network FW, Backup/Replica…) Of course,, only for VMware vSphere environments!