FortiOS 7.4.2 Base Firewall Config 

The initial configuration you put on your SOHO FortiGate is critical. FortiOS 7.4.2 brings some new features and approaches to things. Follow this video to get a basic foundational configuration live that will give you the starting point you need.

Thanks for this video. I was scratching around the internet and saw this video. I use forti at home and work and I implemented the OUTSIDE SDWAN treatment over my existing home/lab setup. I've since had 8 outages due to water infiltrating the carriers systems down the road and the fail-over to my backup 4G service has been flawless. I was aware that this could be done but... just too many things got in the way of doing the book learning to stand this up. Your video quickly plugged that knowledge gap and I've now happily moved into playing more with the SDN functionality away from the traditional routed world... awesome stuff, easy to config, easy to control across link failures and restoration - total no brainer. Thank you.

Can't wait for the heavy hitters episodes 😅 but it's always great to get back to basics. This episode could be called Fortigate 101 😂

I am using Fortigates for my MSP customers for quite some time now and have automated all the steps (and more of cause) using the API and a config script. It's always nice to see the basics again. 👍

Very helpful. Been using Fortigate for 2+ years and still learning. A big problem is WRONG things can MOSTLY work which can provide a false sense that its all good. But still holding off of 7.4.3. They say SD-WAN isn't really working.

Always enjoy your content and way of explaining things. Keep it coming! 🙌🏼

Fantastic content. I think the best way will be for you to make an entire course. However long at least you will lay out all the details. RU-vid is ok but we have to search through to specific videos.

Hi Mike, always liked your videos, thank you. Just a couple of points to note about your basic setup, that few new fortigate guys might not have noticed. You were administrating over the WAN interface with https ON, make sure you tell everyone to close that off and you didnt put any administrative protocols on the LAN, maybe use local-in policies to trusted hosts?, also I noticed you were using flow inspection policies instead of proxy, which I might add has caused a few issues with Lets Encrypt certs of late. Perhaps you could explain the difference to folks about best practice on inspection modes are with protocols to use them with.

Merry Christmas Mike! Thanks for another informative video.

Merry Xmas for you and your family !

Thanks for your video Mike !

c'mon man, where is your beard? Thanks for tutorial!!! 🙃

HI! Can you do an updated video on the profile based vs policy based NGFW of fortigate. I would like to know if the policy based mode have improved

Great video it helped me alot, small problem though...when i remove all polices youtube is still blocked? i have no clue why. and ssl inspection is still on police in monitoring mode

In iptables, I can redirect traffic to any DNS I choose, including internal without the user knowing. To them it's the one they put in DNS. How do I do that in FortiGate? I can't figure it out!

Great video

Would you recommend the same inside zone if I am setting up a LACP with multiple VLAN's and will be looking to do policies that allow some VLAN's to talk between one another and for some to not have internet breakout

I would love to look over your shoulder on what you do after. You mention running a report and chipping away....how? Thank you for your channel.

Why not use the Internet Services database which is build in Fortinet for known destinations / services (like Google DNS)?

Mike, can you please explain the differences between Fortigate and Ubiquiti udm-pro? I’m more custom to Fortigate but recently looked into ubiquiti and their GUI is outstanding. But wanted to ask if there is a way to put each device through a series of benchmark tests if you will to determine which one is more secure.