By default, a SSL VPN connection logouts after 8 hours. Which will cause some user disconnected while continuously working from home for more than 8 hours.
config vpn ssl settings
set idle-timeout 300
The idle-timeout is period of time in seconds that the SSL VPN will wait before timing out. Default value is 300 seconds (5 minutes). Range: <0> to <259200>.
set auth-timeout 28800 The auth-timeout is period of time in seconds that the SSL VPN will wait before re-authentication is enforced. Default value is 28800 seconds (8 hours). Range: <0> to <259200>
A value of 0 indicates no timeout.
Changes as above or changing tunnel/web mode will not impact the environment.
However, be aware: Once a SSL VPN client is connected, a change to firewall address objects or IP pools under SSL VPN settings in a production environment will tear down all the active SSL VPN connections regardless of the above timeout.
Starting from June I have started to take Azure examination from Fundamentals, Associate and finally I have successfully achieved my Azure Solutions Architect Expert certification!
These are the examination path I took – 1. Microsoft Certified: Azure Fundamentals (AZ-900) 2. Microsoft Certified: Azure Administrator Associate (AZ-104) 3. Microsoft Certified: Azure Security Engineer Associate (AZ-500) 4. Microsoft Azure Architect Technologies (AZ-300) + Microsoft Azure Architect Design (AZ-301) = Microsoft Certified: Azure Solutions Architect Expert
Microsoft have their certifications aligned in three levels:
As you can see, if you are aiming to obtain an Expert certification, it’s highly recommended that you have had significant Azure experience. This can be demonstrated by obtaining the Associate level exam, however, it’s not a prerequisite to obtain an Associate exam prior to taking the Azure Solutions Architect Expert exams. For sure, without exposure to Azure, this will be a difficult certification to achieve.
The log archive size of the network devices are increasing every year due to heavy data traffic. Even though we may only keep for one year retention for this kind of log, capacity planning is a must on every year to ensure the log storage will not getting exhausted.
1) In the FortiAnalyzer/FortiManager CLI, run the following command to check if the logical volume manager (LVM) is enabled: