Wipe a Fortinet FortiGate Firewall – Delete All Logs and Configuration

On occasion, I have found that I have the need to not only wipe a Fortinet Fortigate Firewall’s configuration, settings, and logs, but to actually verify that the contents of the logs were wiped out. The script below will allow you to do this.

I would recommend using PuTTY with logging enabled to document your progress. With some modification this may work on other Fortinet devices. Note that you will have to modify the script to add any custom VDOMs you may have on your device.

I would highly recommend backing up your configuration and any logs that you need to retain, as I know of no way to undo this. Use the following script at your own risk!

#-------------------------------#
#Fortinet Device wipe - Supports CTAP Units
#Version: 1.02
#Update: 2018-11-06
#Notes: For systems without VDOMs enabled,
#the config lines will produce an error, however

Continue reading Wipe a Fortinet FortiGate Firewall – Delete All Logs and Configuration

Fortinet FortiGate Transparent Web Proxy on v6.x Setup Walkthrough

This tutorial will walk you through setting up a transparent proxy on a Fortinet Firewall running v6.x code. This tutorial was written on v6.0.1.

Why would you want to do this? Straight from the Fortinet Cookbook here, https://cookbook.fortinet.com/transparent-web-proxy-56/:

“With the transparent web proxy, you can forward your user’s web traffic to the proxy without requiring your users to reconfigure their browsers or without needing to publish a proxy auto-configuration (PAC) file.”

There are a couple of differences in the instructions from v5.6 to v6.0.1 so the intent of this post is to provide an updated Cookbook article.

First off, make sure the FortiGate is in Proxy mode.
Go to System -> Settings and scroll down to the bottom.
Under the System Operations Settings section, select Proxy where it lists the Inspection Mode:

Now, enable Explicit Proxy under Feature Visibility:

Continue reading Fortinet FortiGate Transparent Web Proxy on v6.x Setup Walkthrough

Running Docker on Ubuntu 16.10 Yakkety – Solved

If you try to install Docker on Ubuntu Server v16.10 (Yakkety) using the installation script provided by Docker, this will result in the error “E: Unable to locate package docker-engine”. My solution was to change the repository it was grabbing from Yakkety to the LTS (Long Term Support) version 16.04 – Xenial.

  1. Update package info and install certificates
    sudo apt-get update
    sudo apt-get install apt-transport-https ca-certificates
  2. Install the recommended pre-requisites
    sudo apt-get install linux-image-extra-$(uname -r) linux-image-extra-virtual
  3. You can skip running the installation script, as this will result in the error “E: Unable to locate package docker-engine”.
    wget -qO- https://get.docker.com/ | sh
  4. Update the docker.list file to force it to pull from the other repo. You can verify it updated correctly by reading the file to the screen. Only the one line should be in the file.
    echo "deb https://apt.dockerproject.org/repo ubuntu-xenial main" | sudo tee /etc/apt/sources.list.d/docker.list
    cat /etc/apt/sources.list.d/docker.list
  5. Update package info again and then install Docker
    sudo apt-get update sudo apt-get install -y -q docker-engine
  6. Start Docker and verify that it is running
    sudo service docker start
    sudo service docker status
    CTRL+C
  7. Run a test image
    sudo docker run hello-world
  8. Give your non-root user permissions to run docker. Change “myusername” to your user.
    sudo usermod -aG docker myusername