Skip to main content

TechTalk: Configuring SNMP on a Fortinet 100D firewall

What is a firewall?

A firewall is a network security device that monitors and controls incoming and outgoing network traffic based on predetermined security rules. A firewall sits between two networks establishes a barrier between a trusted network and an untrusted network, such as the Internet.

As the firewall is a network device, it can be monitored via SNMP.

SNMP on FortiGate 100D

In this article, I will go through the steps to configure a Fortinet FortiGate 100D Firewall for SNMP monitoring

To configure SNMP on a FortiGate device, you need your login credentials to FortiGate’s graphical user interface.

  1. Navigate to System > SNMP.
  2. Click Enable the SNMP Agent.
  3. Optional: Add a description, location, and contact.
  4. Click Apply.
  5. Navigate to Network > Interface > Internal > Edit.
  6. Click the box next to SNMP, then Apply to save the changes.

To enable SNMP v1/2c:
  1. In the SNMP v1/v2 section, select Create New.
  2. Choose a Community Name.
  3. Under Hosts, click Add.
  4. Enter the IP address of your Collector or allow SNMP from specified or any hosts. For example: 10.0.1.250/255.255.255.255 or 0.0.0.0/0.0.0.0.
  5. Select Any as the Interface.
  6. Make sure SNMP queries are assigned to port 161 and set to Enable.
  7. Click OK.
To enable SNMP v3:

  1. In the SNMP v3 section, select Create New.
  2. Set your preferred User Name and Auth level.
  3. Ensure Enable Query is checked and the port is set to 161.
  4. Click OK.
SNMP is now configured on your FortiGate device

Comments

Post a Comment

Popular posts from this blog

Telecoms: ePSK - Multiple Pre-Shared Keys

Originally posted on the Cambium Community Networks Just in case you missed it cnMaestro Version 2.2.1 (Cloud and On-Premise), brings us a great new feature called ePSK. If you’re not familiar with ePSK it’s maybe because Cambium are too modest to toot their own trumpet so I’m going to do it for them. In short ePSK gives each user a unique PSK (pre-shared key) when using WPA2-Personal, for me to explain why this is such a useful feature let me first explain the problem with using a shared PSK across the whole WLAN. When a wireless client connects to an AP it completes a 4-Way handshake, this generates the encryption keys used to encrypt wireless traffic. For the 4-way handshake to work it is a requirement that both the client and AP know the passphrase, however the passphrase is never transmitted over the air thereby making this exchange reasonably secure. But what happens when a 3rd party already knows the passphrase? It means they just need to capture the 4-way handshake to gener...
Post a Comment
Read more

Trump’s Policies and Their Impact on Papua New Guinea and the Pacific Islands

With Donald Trump taking office as the 47th president of the United States, his administration quickly embarked on sweeping and polarizing policy changes. Through a series of executive orders, Trump underscored his administration's focus on reshaping U.S. policies in areas such as immigration, trade, climate, and foreign aid. While these efforts are primarily centered on advancing U.S. domestic interests, their repercussions are set to ripple across the globe, especially in regions like the Pacific Islands, where economic and environmental challenges are deeply tied to global policies. For Papua New Guinea (PNG) and its Pacific neighbors, Trump’s policies pose both challenges and potential opportunities. These small island nations depend heavily on international trade, foreign aid, and climate action, all of which are areas of uncertainty under the new administration. Key decisions, such as the U.S. withdrawal from the Paris Climate...
Post a Comment
Read more

Defending Freedom of Speech: The Implications of Facebook Censorship in Papua New Guinea

The Papua New Guinea (PNG) government's recent move to regulate Facebook has sparked significant debate. Citing concerns over misinformation and social unrest, authorities have tested ICT controls to monitor and potentially restrict access to the platform. While the intention is to promote responsible social media use, this action raises critical questions about freedom of expression in the country. The Government's Justification for Facebook Regulation Authorities argue that Facebook has become a conduit for malicious content, including fake news and defamatory material, which could endanger public safety. By implementing a temporary ban or stricter controls, they aim to assess the platform's impact and develop strategies to mitigate these risks. This approach, they claim, is necessary to maintain social harmony and protect citizens from harmful content. However, this rationale has been met with skepticism. Critics contend that such measures...
Post a Comment
Read more