scsd/scsd-configs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fortigate Fri Nov 14 07:04:55 AM EST 2025

Browse Source
This commit is contained in:
John Poland 2025-11-14 07:04:55 -05:00
parent d1d48f23d4
commit 85edfea052
2 changed files with 12 additions and 9 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
configs/fortigate/global/system.cfg
View File

@ -5,7 +5,7 @@ config system global
set gui-auto-upgrade-setup-warning disable set gui-auto-upgrade-setup-warning disable
set gui-device-latitude "43.02974913459805" set gui-device-latitude "43.02974913459805"
set gui-device-longitude "-76.14486694335938" set gui-device-longitude "-76.14486694335938"
set hostname "noc-fortigate-a" set hostname "noc-fortigate-b"
set management-port-use-admin-sport disable set management-port-use-admin-sport disable
set remoteauthtimeout 120 set remoteauthtimeout 120
set revision-backup-on-logout enable set revision-backup-on-logout enable
@ -733,14 +733,14 @@ config system ha
set mode a-p set mode a-p
set hbdev "port1" 50 "port2" 50 set hbdev "port1" 50 "port2" 50
set override disable set override disable
set priority 200 set priority 100
end end
config system storage config system storage
edit "SSD1" edit "SSD1"
set status enable set status enable
set media-status enable set media-status enable
set order 1 set order 1
set partition "LOGUSEDX45501361" set partition "LOGUSEDX4300F88D"
set device "/dev/nvme0n1p1" set device "/dev/nvme0n1p1"
set size 937875 set size 937875
set usage log set usage log
@ -749,7 +749,7 @@ config system storage
set status enable set status enable
set media-status enable set media-status enable
set order 2 set order 2
set partition "WANOPTXX808E4B55" set partition "WANOPTXXFFCD85F8"
set device "/dev/nvme1n1p1" set device "/dev/nvme1n1p1"
set size 266562 set size 266562
set usage wanopt set usage wanopt

13
configs/fortigate/vdom_scsd/firewall.cfg
View File

@ -843,6 +843,10 @@ config firewall address
set color 6 set color 6
set subnet 5.4.5.4 255.255.255.255 set subnet 5.4.5.4 255.255.255.255
next next
edit "Safeschools_02"
set comment "IP address for Safe Schools video training. Used to access LDAP authentication."
set subnet 18.219.244.165 255.255.255.255
next
edit "z_BlockIP_081" edit "z_BlockIP_081"
set comment "Malicious IP Address" set comment "Malicious IP Address"
set associated-interface "outside" set associated-interface "outside"
@ -2627,10 +2631,6 @@ config firewall address
set color 18 set color 18
set subnet 10.1.40.102 255.255.255.255 set subnet 10.1.40.102 255.255.255.255
next next
edit "Safeschools_02"
set comment "IP address for Safe Schools video training. Used to access LDAP authentication."
set subnet 18.219.244.165 255.255.255.255
next
edit "Server_40" edit "Server_40"
set associated-interface "inside" set associated-interface "inside"
set subnet 10.1.40.0 255.255.255.0 set subnet 10.1.40.0 255.255.255.0
@ -3811,6 +3811,9 @@ config firewall service custom
edit "TCP-8443" edit "TCP-8443"
set tcp-portrange 8443 set tcp-portrange 8443
next next
edit "TCP-8013"
set tcp-portrange 8013
next
end end
config firewall service group config firewall service group
edit "Email Access" edit "Email Access"
@ -6219,7 +6222,7 @@ config firewall policy
set srcaddr "all" set srcaddr "all"
set dstaddr "vip-EMS" set dstaddr "vip-EMS"
set schedule "always" set schedule "always"
set service "HTTP" "HTTPS" "TCP-8443" set service "HTTP" "HTTPS" "TCP-8443" "TCP-8013"
set utm-status enable set utm-status enable
set ssl-ssh-profile "certificate-inspection" set ssl-ssh-profile "certificate-inspection"
set ips-sensor "Incoming_IPS" set ips-sensor "Incoming_IPS"