Category Archives: Fortigate

Install Public SSL Certificate on Fortigate

Installing a GoDaddy certificate on your Fortigate is fairly straight forward. Perform the following steps:

1) Log into the Forgitate. On the main dashboard, under ‘Features’, be sure to enable the ‘Certificates’  option. It will then display in the left sidebar.

2) Go to System > Certificates > Local Certificates.

3) Click Generate. Fill in the fields:

Certificate Name:
Subject Information
ID Type: Domain Name
Domain Name:

Key Type: RSA

Key Size: 2048

Enrollment Method: File Based

4) Click OK.

5) Highlight the newly created entry in Local Certificates and download it. Open with notepad to grab the CSR. Use this CSR to request your certificate with GoDaddy.

6) Once GoDaddy has issued the certificates, download the IIS package from GoDaddy. Return to the Local Certificates section of the Fortigate, and select ‘Import’, selecting the newly downloaded GoDaddy certificate.

FortiGate – Versions Cheat Sheet

​FortiOS 5 Version Cheat Sheet

​Numeric Version​ ​Build Number ​Release date ​Notes
​5.0GA ​​128 ​2012/11/01
​5.0.1 ​147 ​2012/12/21
​5.0.2 ​179 ​2013/03/18
​5.0.3 ​208 ​2013/06/24
​5.0.4 ​228 ​2013/08/09
​5.0.5 ​252 ​2013/10/31
​5.0.6 ​271 ​2014/01/24
​5.0.7 3483-4459 ​2014/04/09 ​Resolves Heartbleed Bug – DO NOT USE EARLIER VERSIONS
​5.0.8 ​291 ​2014/07/29
​5.0.9 ​292 ​2014/08/01
​5.2.0 ​589 ​2014/06/13 ​Upgrade from 5.0.6 or later only
​5.2.1 ​618 ​2014/09/15 ​Upgrade from 5.0.6 or later in 5.0 code, or 5.2.0 in 5.2 code
​5.2.3 ​670 ​2015/03/15 ​Upgrade from 5.0.10 or later only in 5.0 code

Upgrade from 5.2.1 or later only in 5.2 code

​5.2.4 ​688 ​2015/06/22 ​Upgrade from 5.0.10 or later only in 5.0 code

Upgrade from 5.2.1 or later only in 5.2 code

Fortigate 60D – Enable Disk Logging

**UPDATE: This only works for 60D’s running 5.0.7 or earlier. Disk logging on the lower end models has been disabled in the 5.2.x code base. You either log to RAM (which is reset upon device reboot, or log to FortiCloud where you can get 1GB of space free upon signup***

To enable logging to local disk on Fortigate, it is a combination of GUI settings and CLI commands to run.

1) Go to System > Config > Advanced. Allocate a portion of the local disk to be utilized for logging. I chose to alot 2GB:

2) Go to the Policy section. Find the policy you want to log and confirm have logging enabled and to Log All Traffic Sessions:

3) Go to Log & Report > Log Config > Log Settings. Select Disk and choose the Disk in the GUI preferences as the log to display:

4) Open CLI and run the following commands to enable and review you disk logging settings:

fgt-01 # config log disk setting
fgt-01 (setting) # set status enable
fgt-01 (setting) # show
config log disk setting
set status enable
set log-quota 2048


If you run into formatting and allocation issues with your disk, check the following CLI values:

– Validate disk status: get system status
– Format disk: execute formatlogdisk
– Reboot device, re-run set status enable commands above