0

Discussion topic: fortinet routers/switches/vpns

Reply
Reply
Avatar for FinnieFinFin
Level 4 icon
What's this?
Topic Author
This message was authored by: FinnieFinFin

Message posted on ‎31 Dec 2023 10:25 PM

Re: fortinet routers/switches/vpns

And I dont want to see any of the routers showing outside of the rack.

Literally need a rack all flush and smart looking behind some tempered glass and slap on some funky led's to give it that, oh so flashy feeling 😆

....
Report post
Post 31 of 44
2,152 Views
0 Likes
Reply
Avatar for mae-3
Level 14 icon
What's this?
This message was authored by: mae-3

Message posted on ‎01 Jan 2024 09:34 AM

Re: fortinet routers/switches/vpns

@FinnieFinFin 

 

From the left is the internet and the right is our setup...

 

Screenshot 2024-01-01 at 09.30.11.png

-------

Zen internet on FTTP (900Mbps down, 100Mbps up). SAT> IP (Apple 4K 2nd gen TV to LG C1 OLED UHD TV/Dolby Atmos Denon AVR, DacMagic Plus for Hi-Res audio), hosting own blog/forum (cluster), OPNsense & Zenarmor L4/L7 NGFW & DPI IDS/IPS, Asus ET12 Pro Tri-Band wifi, Linux, Gamer: Xbox Series X/i7 laptop, round-robin DNS over HTTPS, non-proprietary VoIP HD AMR-WB (G.722.2) and more... Beta tester Apple iOS/watchOS/tvOS/iPadOS/macOS.
Report post
Post 32 of 44
2,108 Views
Reply
Avatar for KevNewMedia
Community Manager icon
What's this?
This message was authored by: KevNewMedia

Message posted on ‎01 Jan 2024 10:41 AM

Re: fortinet routers/switches/vpns

Posted by a Sky employee

Happy New Year Folks!

 

Your most recent posts got caught up in the spam filter, they've now been released @FinnieFinFin  @mae-3 

Thanks
Kev
Community Manager
Report post
Post 33 of 44
2,104 Views
Reply
Avatar for mae-3
Level 14 icon
What's this?
This message was authored by: mae-3

Message posted on ‎01 Jan 2024 10:46 AM

Re: fortinet routers/switches/vpns

@KevNewMedia 

 

Thank you for releasing the posts from the spam filter, and Happy New Year. 😀

-------

Zen internet on FTTP (900Mbps down, 100Mbps up). SAT> IP (Apple 4K 2nd gen TV to LG C1 OLED UHD TV/Dolby Atmos Denon AVR, DacMagic Plus for Hi-Res audio), hosting own blog/forum (cluster), OPNsense & Zenarmor L4/L7 NGFW & DPI IDS/IPS, Asus ET12 Pro Tri-Band wifi, Linux, Gamer: Xbox Series X/i7 laptop, round-robin DNS over HTTPS, non-proprietary VoIP HD AMR-WB (G.722.2) and more... Beta tester Apple iOS/watchOS/tvOS/iPadOS/macOS.
Report post
Post 34 of 44
2,101 Views
Reply
Avatar for FinnieFinFin
Level 4 icon
What's this?
Topic Author
This message was authored by: FinnieFinFin

Message posted on ‎01 Jan 2024 11:28 AM

Re: fortinet routers/switches/vpns

Oh! Thank you for releasing 

happy new year @KevNewMedia @mae-3 

....
Report post
Post 35 of 44
2,089 Views
Reply
Avatar for FinnieFinFin
Level 4 icon
What's this?
Topic Author
This message was authored by: FinnieFinFin

Message posted on ‎01 Jan 2024 11:38 AM

Re: fortinet routers/switches/vpns

Ohh!! This diagram makes sense. I'm all for diagrams 👍 

So I should purchase the router firewall like the one you have

and purchase those 3 mini pcs to virtualise and host vlans etc

 

what would you do in my position?

 

....
Report post
Post 36 of 44
2,083 Views
0 Likes
Reply
Avatar for mae-3
Level 14 icon
What's this?
This message was authored by: mae-3

Message posted on ‎01 Jan 2024 11:46 AM

Re: fortinet routers/switches/vpns

@FinnieFinFin 

 

It's completely up to you, OPNsense with Zenarmor on the perimeter and public/private cluster depending on what you want to achieve is a nice move! VLAN is nice my setup uses segregation via public IP through the firewall and can use VLANs. Like I said I have a block of /29 public IP addresses. Each of those lines in the diagram is a segment of the internet.

-------

Zen internet on FTTP (900Mbps down, 100Mbps up). SAT> IP (Apple 4K 2nd gen TV to LG C1 OLED UHD TV/Dolby Atmos Denon AVR, DacMagic Plus for Hi-Res audio), hosting own blog/forum (cluster), OPNsense & Zenarmor L4/L7 NGFW & DPI IDS/IPS, Asus ET12 Pro Tri-Band wifi, Linux, Gamer: Xbox Series X/i7 laptop, round-robin DNS over HTTPS, non-proprietary VoIP HD AMR-WB (G.722.2) and more... Beta tester Apple iOS/watchOS/tvOS/iPadOS/macOS.
Report post
Post 37 of 44
2,076 Views
Reply
Avatar for mae-3
Level 14 icon
What's this?
This message was authored by: mae-3

Message posted on ‎01 Jan 2024 12:01 PM

Re: fortinet routers/switches/vpns

@FinnieFinFin 

 

With the setup, you have a drill-down on the NGFW as follows in these diagrams:-

 

Screenshot 2024-01-01 at 11.58.24.pngScreenshot 2024-01-01 at 11.58.52.png

-------

Zen internet on FTTP (900Mbps down, 100Mbps up). SAT> IP (Apple 4K 2nd gen TV to LG C1 OLED UHD TV/Dolby Atmos Denon AVR, DacMagic Plus for Hi-Res audio), hosting own blog/forum (cluster), OPNsense & Zenarmor L4/L7 NGFW & DPI IDS/IPS, Asus ET12 Pro Tri-Band wifi, Linux, Gamer: Xbox Series X/i7 laptop, round-robin DNS over HTTPS, non-proprietary VoIP HD AMR-WB (G.722.2) and more... Beta tester Apple iOS/watchOS/tvOS/iPadOS/macOS.
Report post
Post 38 of 44
2,065 Views
Reply
Avatar for mae-3
Level 14 icon
What's this?
This message was authored by: mae-3

Message posted on ‎01 Jan 2024 12:06 PM

Re: fortinet routers/switches/vpns

@FinnieFinFin 

 

This screenshot gives the blocks that have occurred owing to rules which can be drilled down.

 

Screenshot 2024-01-01 at 12.04.56.png

-------

Zen internet on FTTP (900Mbps down, 100Mbps up). SAT> IP (Apple 4K 2nd gen TV to LG C1 OLED UHD TV/Dolby Atmos Denon AVR, DacMagic Plus for Hi-Res audio), hosting own blog/forum (cluster), OPNsense & Zenarmor L4/L7 NGFW & DPI IDS/IPS, Asus ET12 Pro Tri-Band wifi, Linux, Gamer: Xbox Series X/i7 laptop, round-robin DNS over HTTPS, non-proprietary VoIP HD AMR-WB (G.722.2) and more... Beta tester Apple iOS/watchOS/tvOS/iPadOS/macOS.
Report post
Post 39 of 44
2,061 Views
Reply
Avatar for FinnieFinFin
Level 4 icon
What's this?
Topic Author
This message was authored by: FinnieFinFin

Message posted on ‎01 Jan 2024 12:13 PM

Re: fortinet routers/switches/vpns

Love pie charts 👍

yep, this is gonna take me a good few weeks to assign and figure out. I'm still a total noob but quick learner

your guidance is helping a great deal!

....
Report post
Post 40 of 44
2,053 Views
0 Likes
Reply
Avatar for mae-3
Level 14 icon
What's this?
This message was authored by: mae-3

Message posted on ‎01 Jan 2024 12:23 PM

Re: fortinet routers/switches/vpns

@FinnieFinFin 

 

When you drill down you get a full view of what is happening, this shows my firewall blocking Sky advertisements...

 

Screenshot 2024-01-01 at 12.20.42.png

-------

Zen internet on FTTP (900Mbps down, 100Mbps up). SAT> IP (Apple 4K 2nd gen TV to LG C1 OLED UHD TV/Dolby Atmos Denon AVR, DacMagic Plus for Hi-Res audio), hosting own blog/forum (cluster), OPNsense & Zenarmor L4/L7 NGFW & DPI IDS/IPS, Asus ET12 Pro Tri-Band wifi, Linux, Gamer: Xbox Series X/i7 laptop, round-robin DNS over HTTPS, non-proprietary VoIP HD AMR-WB (G.722.2) and more... Beta tester Apple iOS/watchOS/tvOS/iPadOS/macOS.
Report post
Post 41 of 44
2,047 Views
Reply
Avatar for mae-3
Level 14 icon
What's this?
This message was authored by: mae-3

Message posted on ‎01 Jan 2024 12:34 PM

Re: fortinet routers/switches/vpns

@FinnieFinFin 

 

This is the IDS/IPS protecting my public servers:-

 

Screenshot 2024-01-01 at 12.32.45.png

-------

Zen internet on FTTP (900Mbps down, 100Mbps up). SAT> IP (Apple 4K 2nd gen TV to LG C1 OLED UHD TV/Dolby Atmos Denon AVR, DacMagic Plus for Hi-Res audio), hosting own blog/forum (cluster), OPNsense & Zenarmor L4/L7 NGFW & DPI IDS/IPS, Asus ET12 Pro Tri-Band wifi, Linux, Gamer: Xbox Series X/i7 laptop, round-robin DNS over HTTPS, non-proprietary VoIP HD AMR-WB (G.722.2) and more... Beta tester Apple iOS/watchOS/tvOS/iPadOS/macOS.
Report post
Post 42 of 44
2,043 Views
Reply
Avatar for FinnieFinFin
Level 4 icon
What's this?
Topic Author
This message was authored by: FinnieFinFin

Message posted on ‎01 Jan 2024 12:53 PM

Re: fortinet routers/switches/vpns

Your setup is awesome!

This is exactly what I'm aiming to do.

tired of paying premium services on YouTube just to stop advertisers

But mostly to preventing companies spy on me, stealing sensitive data etc

Ya, having tech that prevents all this and more is a must. 
Just had an email from draytek encouraging me to purchase their fibre routers?

Spooky, cos my threads on sky community talk about all this and now I've received an encouraging email from draytek...

 

....
Report post
Post 43 of 44
2,033 Views
Reply
Avatar for mae-3
Level 14 icon
What's this?
This message was authored by: mae-3

Message posted on ‎01 Jan 2024 01:22 PM

Re: fortinet routers/switches/vpns

@FinnieFinFin 

 

Draytek do good bridges for VDSL2 & G,.fast not sure they know a great deal about NGFW. 😎

-------

Zen internet on FTTP (900Mbps down, 100Mbps up). SAT> IP (Apple 4K 2nd gen TV to LG C1 OLED UHD TV/Dolby Atmos Denon AVR, DacMagic Plus for Hi-Res audio), hosting own blog/forum (cluster), OPNsense & Zenarmor L4/L7 NGFW & DPI IDS/IPS, Asus ET12 Pro Tri-Band wifi, Linux, Gamer: Xbox Series X/i7 laptop, round-robin DNS over HTTPS, non-proprietary VoIP HD AMR-WB (G.722.2) and more... Beta tester Apple iOS/watchOS/tvOS/iPadOS/macOS.
Report post
Post 44 of 44
2,021 Views
Reply
Reply