how to exclude URL from SSL inspection in the Fortigate firewall.

Hi All, this document deals with how to exclude URL from SSL inspection in the Fortigate firewall. For some companies, they need to enable content filter or web content filter to meet the Company’s compliance. By default most of the firewall can block the contents, web URL which is working on HTTP protocol and HTTPS URLs will be bypassed. This is not an issue with the firewall, the firewall is not able to catch the URL or contents since it is SSL encrypted. So we have to use SSL inspection…

Read More

how to install and configure nDPI in ubuntu

how to install and configure nDPI in ubuntu Hi Techrunnr readers, this tutorial shows you how to install and configure nDPI in ubuntu. nDPI is an open source LGPLv3 library for deep-packet inspection. Based on OpenDPI it includes ntop extensions. We have tried to push them into the OpenDPI source tree but nobody answered emails so we have decided to create our own source tree. nDPI is used for application-layer detection of protocols, regardless of the port being used. This means that it is possible to both detect known protocols…

Read More

geobased IP blocking using iptables

geobased IP blocking using iptables IT admins working hard to block unwanted traffic coming from different countries which are not relevant to their business. This geobased IP blocking using iptables help you to fight against this type of situation. You can achieve this using by apache (using geo module) and iptables. It’s always best to block at Iptables itself because blocking at apache level consumes more system resources. Here is a small shell script which performs this action. vi ipblock.sh #!/bin/bash # Purpose: Block all traffic from AFGHANISTAN (af) and…

Read More