- 6
- 30 015
NetSec Boy
Philippines
Registrace 6. 02. 2016
Juniper SRX Initial Configurations
This video will show you the important initial configuration you should configure on you Juniper SRX.
Refer to this link for free Juniper JNCIA-SEC training course
learningportal.juniper.net/juniper/user_activity_info.aspx?id=EDU-JUN-WBT-JOL-JNCIA-SEC
Check out my Fortinet NSE4 7.0 Practice Test Exam at Udemy
www.udemy.com/course/latest-fortinet-nse-4-70-practice-test-2022/?referralCode=9CF182701A75FAB1FA52
Check out my Fortinet NSE5 7.0 FMG Practice Test Exam at Udemy
www.udemy.com/course/latest-fortimanager-nse-5-70-practice-test-2023/?referralCode=B7040525E8373A9B12E7
Juniper SRX Initial Configurations used on this video
Juniper SRX Initial Configuration
*set root authentication
set system root-authentication plain-text-password
*set hostname
set system host-name
* set name servers
set system name-server 8.8.8.8
set system name-server 8.8.4.4
* set login user
set system login user admin1 class superuser
set system login user admin1 authentication plain-text-passowrd
* set login message
set system login message "*** WARNING ***
It is for Authorized use only.All logins are monitored"
* set login announcement
set system login announcement "
Fpr support, please contact NOC
"
* set date
set date ntp pool.ntp.org
set system ntp server pool.ntp.org
show ntp associations
* set time zone
set system time-zone
* set domain name
Management Interface Configuraitons
* set interface IP address
set interface ge-0/0/0 unit 0 family inet address 172.16.1.1/24
* allow https
set system services web-management https interface
* allow SSH/telnet access
set system services ssh
set system services telnet
* create security zone
set security zone security-zone trust_management
* add interface to security zone
set security zone security-zone interface ge-0/0/0
* allow inbound traffic (ping,ssh,https_ to security zone
set security zone security-zone
host-inbound-traffic system services ping
set security zone security-zone
host-inbound-traffic system services https
set security zone security-zone
host-inbound-traffic system services ssh
Refer to this link for free Juniper JNCIA-SEC training course
learningportal.juniper.net/juniper/user_activity_info.aspx?id=EDU-JUN-WBT-JOL-JNCIA-SEC
Check out my Fortinet NSE4 7.0 Practice Test Exam at Udemy
www.udemy.com/course/latest-fortinet-nse-4-70-practice-test-2022/?referralCode=9CF182701A75FAB1FA52
Check out my Fortinet NSE5 7.0 FMG Practice Test Exam at Udemy
www.udemy.com/course/latest-fortimanager-nse-5-70-practice-test-2023/?referralCode=B7040525E8373A9B12E7
Juniper SRX Initial Configurations used on this video
Juniper SRX Initial Configuration
*set root authentication
set system root-authentication plain-text-password
*set hostname
set system host-name
* set name servers
set system name-server 8.8.8.8
set system name-server 8.8.4.4
* set login user
set system login user admin1 class superuser
set system login user admin1 authentication plain-text-passowrd
* set login message
set system login message "*** WARNING ***
It is for Authorized use only.All logins are monitored"
* set login announcement
set system login announcement "
Fpr support, please contact NOC
"
* set date
set date ntp pool.ntp.org
set system ntp server pool.ntp.org
show ntp associations
* set time zone
set system time-zone
* set domain name
Management Interface Configuraitons
* set interface IP address
set interface ge-0/0/0 unit 0 family inet address 172.16.1.1/24
* allow https
set system services web-management https interface
* allow SSH/telnet access
set system services ssh
set system services telnet
* create security zone
set security zone security-zone trust_management
* add interface to security zone
set security zone security-zone interface ge-0/0/0
* allow inbound traffic (ping,ssh,https_ to security zone
set security zone security-zone
host-inbound-traffic system services ping
set security zone security-zone
host-inbound-traffic system services https
set security zone security-zone
host-inbound-traffic system services ssh
zhlédnutí: 69
Video
EVE NG Community Edition in Google Cloud Platform
zhlédnutí 2KPřed rokem
This video will show you how to create VM instances, Install Ubuntu OS and Install EVE-NG Community Edition on Google Cloud Platform. Google Cloud Platform provides $300 in free credits( 3 months) to spend on Google Cloud and extra $100 if you add your work email. Google Cloud Platform link console.cloud.google.com/getting-started Refer to this link for more details about GCP free trial. cloud....
FortiGate Site to site VPN with Backup
zhlédnutí 811Před rokem
On this video I will show you how to configure site to site VPN with backup on FortiGate Firewall. Fortinet links! docs.fortinet.com/ cookbook.fortinet.com/ Fortinet Learning Institute partnerportal.fortinet.com/English/?rdir=/home.aspx?NSE Check out my Fortinet NSE4 7.0 Practice Test Exam at Udemy www.udemy.com/course/latest-fortinet-nse-4-70-practice-test-2022/?referralCode=9CF182701A75FAB1FA...
FortiGate HA Active-Active Configuration
zhlédnutí 2,7KPřed rokem
Fortinet links! docs.fortinet.com/ kb.fortinet.com/kb/microsites... cookbook.fortinet.com/ Fortinet HA Guide docs.fortinet.com/document/fortigate/7.2.4/administration-guide/666376/high-availability Check out my Fortinet NSE4 7.0 Practice Test Exam at Udemy www.udemy.com/course/latest-fortinet-nse-4-70-practice-test-2022/?referralCode=9CF182701A75FAB1FA52
How to Configure FortiGate Static Routes and simple failover
zhlédnutí 13KPřed rokem
In this video I will show you how to configure static route and a simple fail-over in FortiGate that is applicable in small network infrastructure. Fortinet links! docs.fortinet.com/ kb.fortinet.com/kb/microsites... cookbook.fortinet.com/ Check out my Fortinet NSE4 7.0 Practice Test Exam at Udemy www.udemy.com/course/latest-fortinet-nse-4-70-practice-test-2022/?referralCode=9CF182701A75FAB1FA52
How to Setup FortiGate VM Evaluation License Permanently
zhlédnutí 11KPřed rokem
In this video I will show you how to activate FortiGate VM Permanent Evaluation License using the simulation tool EVE-NG Permanent trial mode for FortiGate-VM docs.fortinet.com/document/fortigate/7.2.3/administration-guide/441460 FortiGate Evaluation License limitations yurisk.info/2022/08/08/Fortigate-free-VM-Evaluation-License-is-now-permanent-not-15-days/ Fortinet links! docs.fortinet.com/ k...
Hello, I was wondering if installing eve-ng on the cloud helps with getting around the system requirements outlined. I have an M1 Mac which is not supported by eve-ng. I really do not want to buy a new PC for this. My purpose is to install cisco images and practice. Thank you for your reply.
Yes buddy, you can use this eve-ng cloud free tier, however it only lasts for 3 months. If you want you can use another gmail and register again to have another 3 months or buy the subscription.
@@NetSecBoy thank you so much
Hi how can I get the fortigate images for eve-ng?
Great Video :) Worked 100%
How to determine what Administrative distance to set per connection? I know the primary should be lower number than backup, but how high or low should you set them to? Does the Administrative distance number mean how many hops it allows to reach a destination? So say primary is 30 and backup is 35, does this mean 30 hops are allowed for primary, but if it exceeds that many hops, it considers the connection bad, and switches to the backup? Trying to understand what the number represents exactly.
Thanks
when you are creating the vm instance there is a cost associated to it showing up in screen, was it supposed to be free or I am being charge for that ?
In GCP Free tier which I used they offer 90-days, and a $300 free trial to get you started.
Best explanation :)
this is actual message showing when getting license "Requesting FortiCare Trial license, Proxy:(null) Failed to download VM License"
If the Firewall is set to be more secure. How should I define it? Can you give an example?
You can use firewall rules.
Really good video. Can you please do the same setup using BGP ?
Nice video, however you did not include the Router config for interface e0/1, how do you have two ISPs? Are you using the NAT network in eve-ng then do ip address dhcp on the e0/1 interface to get the 172.29.129.x address that can go out to the internet?
Great demo… since it’s Active Active, can you also show how the user sessions are load shared across the 2 FG. What’s the mechanism for load sharing? Thanks
Hi bro could you please make a vedio to trasfer through the winscp the firewall and all these.
Hi , if you alresdy logged in to eve via winscp you can easily locate the folder and drag and drop your images, but I will make a video about this :)
how to make two ISP with different network sir? I Just put 1 ISP with Management cloud, in vmware i'm just user virtual network adapter vmware vm0 pair with my wireless device in laptop. Can you tell me? Thank you very much
Great video. But how can you create a health check on the next hops so that it failovers even when the fifical interface remains up without having to use sdwan?
How can I setup homelab to learn Fortinet firewall configuration?
czcams.com/video/B03dxnFPlcs/video.htmlsi=Qs29AM7lti1c5Uv5
great video but bro as this video is for beginner so if you could mention the router and switch configuration it will be very helpful thanks
sure bro I will create a video for this one "router on a stick" or Roas
Great tutorial, it solves my problem. But in the meantime, I just managed to install eve-ng correctly and I can't access it when I enter my credentials. I need your help with this.
Hi buddy, the default web ui login is us: admin pw: eve
Gracias amigo
great lab, what config is on switch side ?
Thanks @sridharbvnl2101, no configurations yet on the switches, the videos focuses only on the FortiGate's configuration. You can add/configure vlan's on your lab.
thanks , pls do VDOM lab as well
I cannot choose my disk type. There are no options to choose SSD
check again, skip video in 4:30
@@NetSecBoyyeah that's where I'm at. It doesn't give me the option to choose ssd.
@@Lewis-fr9mu did you enable compute engine API ? try watching video from the start maybe you missed something
Hello , even doing this commands i still cannot access using evaluation licence Can you help me please ?
how the traffic pass to second ISP, the firewall policy you given Outgoing interface Wan-1, how the traffic switch to second Isp. AD distance for only static route.
hi @ferozsyed2014, this video shows only how to create static routes on FortiGate Firewall and a simple failover. To answer your question, the traffic goes to second ISP once the primary ISP goes down and when it goes up again the traffic will go back to the primary. Just remember in FortiGate static route AD lowest value is preferred for the routing table.
@@NetSecBoy thanks for your reply.
@@NetSecBoy But you have not configured the link health monitor. In case of primary link failure, how would it switch to secondary link automatically?
really helpful this video is .Thank you.
keep uploading videos .. I think dont add music .. Nice job .. try to use voice animation instead of music.
for windows 10 images bro
Good brother step by step explanation i liked 👌👍
thanks brother! goodluck on your studies
Failover with sd wan can combine?
Hi Stanley, no sdwan configured on this lab, just a simple static route failover with lower and higher distance on it.
@@NetSecBoy hi sir really appreciate your reply thank you
@@stanleygalaxy5333 happy to help
Thanks ~~~~
Great video! Have you done FortiGate HA Active-Active in transparent mode ?
Hi. Is this going to give a 15 day trial eval or a permanent (timeless) evaluation image?
Hi, it's a permanent evaluation but limitted features.
thank you from heart
Hello please help me dear. I want windows 10 image install
Thank you for the video , is this enough for home usage firewall or is it just to play and learn how fortigate works ?
Hi Eran, if you have license on your home usage firewall that's much better because the evaluation license has it's FortiGate features limitations the good thing for evaluation license is that it is lifetime or permanent. This link shows the limitations of evaluation license of FortiGate yurisk.info/2022/08/08/Fortigate-free-VM-Evaluation-License-is-now-permanent-not-15-days/
@@NetSecBoy I have fortigate 30e without license
@@EranFX If you don't have a license on your fortigate 30e the features would be limited like, FortiGate will lose the ability to update its signatures from FortiGuard and some security features will not function especially web filters
Hello Everyone, take note that 1 Forticloud account = 1 FortiGate Evaluation License
It'd useless until web filter not working
@@Linux-xz7kv Use older versions like 6.4 but it's security filter is limited. But if you want a full features available you request to Fortinet for an evaluation trial.
Hello , thank for this video i need you image please
Hi Mohamed, you can download all FortiGate images for free support.fortinet.com/download/firmwareimages.aspx