- 34
- 39 403
CyberSec
Canada
เข้าร่วมเมื่อ 21 ก.ค. 2021
Free Hands on Lab content on Fortinet Products and Cybersecurity.
ZTNA vs VPN
Check out this video to learn the difference between Zero Trust Network Access and Virtual Private Network
***********************************************************
Check out The ZTNA Hands-On Lab Course
tkcybersec.thinkific.com/courses/ZTNA
***********************************************************
00:00 Introduction
00:21 ZTNA Hands-On Labs course
00:53 ZTNA vs VPN What is each technology and location it's used in
01:59 Trust Model and Access
04:40 Authentication Methods
05:34 ZTNA Demo, Device Security Posture,
08:17 FortiGate ZTNA Policy
09:06 Check User ZTNA HTTP/HTTPS Access to Internal Resource with Security Posture matching the ZTNA rule, user is provided access
10:43 Security Posture not matching the ZTNA rule, user not provided access
12:30 VPN Access Demo
Like and subscribe if you like this view.
***********************************************************
Check out The ZTNA Hands-On Lab Course
tkcybersec.thinkific.com/courses/ZTNA
***********************************************************
00:00 Introduction
00:21 ZTNA Hands-On Labs course
00:53 ZTNA vs VPN What is each technology and location it's used in
01:59 Trust Model and Access
04:40 Authentication Methods
05:34 ZTNA Demo, Device Security Posture,
08:17 FortiGate ZTNA Policy
09:06 Check User ZTNA HTTP/HTTPS Access to Internal Resource with Security Posture matching the ZTNA rule, user is provided access
10:43 Security Posture not matching the ZTNA rule, user not provided access
12:30 VPN Access Demo
Like and subscribe if you like this view.
มุมมอง: 907
วีดีโอ
Security Farbic FortiGate Root and Downstream Setup
มุมมอง 6328 วันที่ผ่านมา
Watch this hands-on lab video to learn how to setup security fabric for root and downstream fortigates 00:00 Introduction 00:23 Topology and network subnets 01:00 FortiGate Root 01:45 Setup Logging for Root Fabric Setup 02:10 Setup FortiGate as Fabric Root 02:14 Setup FortiGate as Fabric Root - Allow other Security Fabric Devices to Join fabric 02:39 Setup FortiGate as Fabric Root - Device Auth...
Why FortiGuard Web Page Blocked Not Showing
มุมมอง 227หลายเดือนก่อน
Watch this hands-on lab video to learn how to fix FortiGuard web page blocked page not showing up on the browser. 00:00 Introduction 00:45 FortiGuard Web Filter categories blocking social media 01:14 Not seeing FortiGuard Web Page blocked and why 02:29 How to fix not seeing FortiGuard Web Page blocked 04:25 FortiGuard Web Page blocked is showing Check Out My Video Courses ZTNA tkcybersec.thinki...
Learn FortiGate FortiGuard Web Filter Categories
มุมมอง 147หลายเดือนก่อน
Watch this hands-on lab video to learn how FortiGate Web Filter works, specifically the FortiGuard Web Filter. Video Courses Check out the ZTNA Hands-On Lab Course on Udemy www.udemy.com/course/learn-fortigate-zero-trust-network-access-hands-on-labs/?referralCode=216AD89EB64279B859E4 check out my FortiProxy Hands-on-Lab video course tkcybertech.teachable.com 00:00 Introduction 00:28 Configure W...
FortiGate Dial-Up VPN Configuration
มุมมอง 2232 หลายเดือนก่อน
Watch this hands on lab video to learn how to configure FortiGate dial up VPN, Push Remote VPN profile to the FortiClient endpoint using EMS and test VPN connection. Video Courses Check out The ZTNA Hands-On Lab Course on Udemy www.udemy.com/course/learn-fortigate-zero-trust-network-access-hands-on-labs/?referralCode=216AD89EB64279B859E4 check out my FortiProxy Hands-on-Lab video course tkcyber...
FortiGate Zero Trust Hands-On Lab Course
มุมมอง 2743 หลายเดือนก่อน
The course is available on the link below tkcybersec.thinkific.com/courses/ZTNA This course is for individuals who are looking to learn about Fortinet Zero Trust Network Access . This course is fully hands-on lab experience, and students will learn the following in this course. Understand what Zero Trust Network Access is. Component of Fortinet Zero Trust Network Access. What are ZTNA Tags and ...
FortiGate ZTNA and SSL VPN
มุมมอง 3.3K6 หลายเดือนก่อน
Watch this hands on lab video to learn how FortiGate Zero Trust Network Access (ZTNA) works with SSL VPN for remote users. Check Out The ZTNA Hands-On Lab Course tkcybersec.thinkific.com/courses/ZTNA 00:00 Introduction 00:40 Video lab flow 01:35 Other ZTNA Videos 01:58 Configure FortiGate SSL VPN 05:54 LDAP Configuration for Authentication 07:25 Create remote LDAP user and group for SSL VPN aut...
FortiGate Zero Trust Network Access (ZTNA) For Remote Users Part 2
มุมมอง 2.1K7 หลายเดือนก่อน
Watch this hands on lab video to learn how FortiGate Zero Trust Network Access (ZTNA) works for remote users accessing internal TCP resource using FortiGate ZTNA TCP Forwarding with ZTNA tags. Check out The ZTNA Hands-On Lab Course tkcybersec.thinkific.com/courses/ZTNA 00:38 FortiGate Zero Trust Network Access Part 1 video 01:17 This lab scenario 02:10 Accessing FCT EMS 02:46 Demonstrating ZTNA...
FortiGate Zero Trust Network Access (ZTNA) For Remote Users Part 1
มุมมอง 6K7 หลายเดือนก่อน
Watch this hands on lab video to learn how Fortinet Zero Trust Network Access (ZTNA) works for remote users accessing internal HTTP/HTTPS resource using FortiGate ZTNA access proxy with ZTNA tags Check out The ZTNA Hands-On Lab Course tkcybersec.thinkific.com/courses/ZTNA 00:00. Introduction. 00:37 Lab Topology. 01:14 Integrate FortiClient EMS with Windows AD Server using EMS Authentication ser...
FortiGate Zero Trust Network Access (ZTNA) Lab for On-Network or Internal Users
มุมมอง 2.3K7 หลายเดือนก่อน
Watch this hands on lab video to learn how Fortinet Zero Trust Network Access (ZTNA) works for On-Network scenario where internal enterprise users are accessing internal applications. Check out The ZTNA Hands-On Lab Course tkcybersec.thinkific.com/courses/ZTNA 00:00. Introduction. 00:37 Lab Flow or what we are covering in this lab 02:10 Lab Topology. 03:00 Integrate FortiClient EMS with Windows...
FortiGate and EMS Fabric Integration
มุมมอง 1.4K9 หลายเดือนก่อน
Watch this video to have an overview of FortiGate and FortiClient EMS fabric integration 00:00. Introduction. 00:23 Topology 01:00 Integrate FortiClient EMS and FortiGate. 04:18 CLI configuration part 05:50 FortiClient EMS certificate used in Fabric Integration 06:40 FortiClient EMS CA certificate used to sign certificate used in Fabric Integration 07:25 Please like and subscribe. Please check ...
FortiGate 7.4 MAC Address Threat Feed
มุมมอง 33410 หลายเดือนก่อน
Watch this video to have an overview of FortiGate MAC address threat feed for FortiOS 7.4 00:00. Introduction. 00:24 What is MAC address threat feed. 00:50 Apache web server and how to upload MAC address list text file. 03:05 How to configure MAC address threat feed 04:30 How to view MAC address threat feed entries 04:40 Where o use MAC address threat feed. 05:07 Configuring and testing firewal...
FortiGate Asset Identity and OT view
มุมมอง 54511 หลายเดือนก่อน
Watch this video to have an overview of FortiGate asset identity and OT view for FortiOS 7.4.1 00:00. Introduction. 00:45 Asset Identity. 02:48 How to populate information in Asset identity center 02:58 How to enable device detection 03:30 FortiGate OT view and how to enable it 04:05 Purdue Level . 05:35 How to How to change purdue level 06:38 How to change default interface purdue level 7.4.1 ...
FortiProxy Hands On Lab Course
มุมมอง 3.6K11 หลายเดือนก่อน
This video course is available on teachable. tkcybertech.teachable.com This video will provide you with an understanding and hands on labs experience of the following topics: -What is Proxy, why we use proxy. -Proxy types based on traffic flow, Proxy types based on anonymity -FortiProxy Policies Types and Proxy Profile -FortiProxy Explicit Proxy -FortiProxy Web Access Acceleration with Content ...
FortiProxy Explicit Proxy
มุมมอง 2.7Kปีที่แล้ว
Watch this video to have an overview of explicit proxy and learn how to setup FortiProxy explicit proxy in your environment. 00:00. Introduction. 00:48 Topology and Network Overview. 01:55 What is FortiProxy Explicit Web Proxy? 02:13 What traffic you can explicitly proxy? 02:25 How browser send traffic to FortiProxy? 02:40 NAT . 03:40 How to enable FortiProxy Explicit Proxy on interface? 04:08 ...
How to sign CSR using FortiAuthenticator
มุมมอง 1.3Kปีที่แล้ว
How to sign CSR using FortiAuthenticator
Things to know about digital certificate
มุมมอง 376ปีที่แล้ว
Things to know about digital certificate
Identity & Access Management with FortiAuthenticator
มุมมอง 750ปีที่แล้ว
Identity & Access Management with FortiAuthenticator
Identity and Access Management (IAM) Overview
มุมมอง 6522 ปีที่แล้ว
Identity and Access Management (IAM) Overview
How to Configure Networking and design VMware ESXI with FortiProxy and FortiGate topology.
มุมมอง 2.2K2 ปีที่แล้ว
How to Configure Networking and design VMware ESXI with FortiProxy and FortiGate topology.
Ubuntu Installtion on VMware ESXI & Disk Partitioning sawp/root/home,
มุมมอง 5532 ปีที่แล้ว
Ubuntu Installtion on VMware ESXI & Disk Partitioning sawp/root/home,
SSL/TLS overview and detailed handshake
มุมมอง 1782 ปีที่แล้ว
SSL/TLS overview and detailed handshake
What is hashing and examples of hashing used cases
มุมมอง 983 ปีที่แล้ว
What is hashing and examples of hashing used cases
Thank you!! Very nice tutorial. I need a rdp-connection to a windows-server. Is this also possible?
@TheMeteorra89 no problem, happy it helped. Yes, you can use TCP Forwarding for RDP. If you're interested in full ZTNA course check out tkcybersec.thinkific.com/courses/ZTNA
please make a video about the best practices of security profiles in inbound and outbound traffic .i.e. IPS , certificates.. thank you
nice
how do you allow users to connect to other VPNs while maintain connection to fortiems?
@aliabdulrazaq3852 you can keep the route connecting to EMS separate from VPN so you'll have constant connection to EMS whether you are connecting to VPN or not . Hope that answers your question
Why are you using ESXi over Proxmox?
💯
Can you make a video on FortiGate/EMS integration for remote users that are off-fabric?
@KamiRedJJJ Sure, are you looking to integrate remote Forticlient with EMS? or integrate EMS with FGT in different locations?
it looks Terraform cannot do this configuration, I cannot find any related resource.
I struggled for minutes because I didn't enable the "Explicit Web Proxy" settings in the Interface. It worked, thanks!
Really helpful video bro. Appreciated <3
Excellent expalanation. I will have to watch it gagian and again and then apply it on my environment
on the john PC did you do "anything" bar point to the firewall as a gateway, I ask as redoing this here, i dont get the nice "blocked" screen i cant get to a site ive blocked but its a horrible SSL error... wheras you get the Fortigate blocked page.... any ideas ? thanks !
@mgstu I am planning to post a video for this upcoming weekend, hopefully. I believe the reason Blocked page is not showing up because the browser does not have an SSL certificate FGT is using.
@@cybersec3306 yes this was where I got to, but for people that come on site you dont cotnrol youll never install a cert, would having a "valid real" cert on the FG overcome this ? thanks !
Yes, this should work having a publicly signed cert.
Thanks for sharing. Well explained and very clear.
Wonderful explanation. Thanks! Quick question, in 14:30, you did not specify 8013, i.e 192.168.1.60:8013 why ? Because this is by default ?
Thanks and yes 8013 is the default port used for FortiTele communication
can MFA be applied on above use cases like RDP/SSH?
hey, for some reason i cant fid SSL VPN when i want to create the VPN tunnel. I tried before in another lab i got both options but this time i only find the IPsec VPN option.
I believe you need to enable the SSL VPN feature visibility Go to System > Feature Visibility and enable SSL VPN
@@cybersec3306 sorry i forget to mention that i can't find SSL VPN on the EMS Server not on Fortigate. On 14:18 you got both options.
@@cybersec3306 Thank you!..i was wondering the same..
Great tutorial btw, just pointing out, you should never use ports below 1024 (822 for example is reserved for Mac OS X RPC-based services).
Thanks for pointing this out
Is it possible to do SMB through the ZTNA? So far I've been unsuccessful in getting it to work.
I haven't tried this scenario but came across this document docs.fortinet.com/document/fortigate/7.4.1/administration-guide/553746/ztna-access-proxy-with-kdc-to-access-shared-drives
Hi ,we are using the same kind of Setup in these case we are using Azure SAML for SSO ,how we can connect to internal servers ,how the Azure SAML SSO will take the tags
Hi, sorry i haven't worked on this scenario i would recommend looking through Fortinet documentations. docs.fortinet.com/ztna/7.4
HI, Thanks for thé vidéo . Should the end user be connected mandatory to EMS for RDP use case ? CAN RDP scénario without forticlient in end user side ?😊
In order for ZTNA tags to be received by FortiClient it need to be connected to EMS. RDP without FortiClient still possible if you have DNAT setup on FortiGate but it's recommended to use FortiClient with ZTNA or have VPN with ZTNA
Hi, thank you for all your videos on ZTNA. They helped me a lot to understand. Do you have notes on the steps you performed? Like a documentation overview? It would help me big time!
Unfortunately, I don't have this documented, but thanks for bringing it up. This is something I can work on documenting.
Do the remote user have to give external ip always in order to access internal resources or its just for 1 time for installing certificate?
You will need to have a remote user be able to reach the EMS on port, i believe 8013. As far as i know, remote users to access internal resources they need to hit a publicly accessible IP address not just for 1 time
Hi. Thanks for sharing. I did the same way but getting internal connection error when doing rdp. Forti tech suggested to use proxy policy instead of normal firewall policy with ztna enabled.
I didn't know Shia LaBeouf was in IT! 🤔
😆😆😆
thanks , great video
Hi I need to integrate ZTNA using 2FA with FortiToken 400 do you have any idea?
Found this article that might help community.fortinet.com/t5/Support-Forum/ZTNA-with-2FA/td-p/215662
@@cybersec3306 tks man
Thanks buddy
ZTNA topic was not clear for me. Awesome tutorial! Thanks and grettings! Mateusz
Appreciate the feedback. Let me know if you have any questions.
Thank you for this video.
Excellent
Thanks for the video, keep it up Budd,
This is helpful.. thanks
You welcome ❤️
Shagagi budd, keep it up 👍
Well done bro Keep going 👍
Good job Abdul Keep it up👏
Thanks for sharing
You're welcome, Please let me know if there's any content you'd like see in future.
Hi buddy, I know the video is old, but could you please make an ISO/Image available for study purposes?
Keep it up!
You sound like Pedro Pascal
Thanks Abdul, Very well explained!
Thanks Leila. If you want a video about any topic let me know and i'll try to work on it.
@@cybersec3306 That would be great!!!!!
موفق خوي عبود good job bro
Great job bro ✌🏻
Thanks Habibi Ahmed
حياتي good luck ❤️
موفق حبيبي عبودي
حبيبي مصطفى تسلم