Fortigate SIP ALG / RTP / SIP Session disable

config system settings

set sip-helper disable

set sip-nat-trace disable

set default-voip-alg-mode kernel-helper-based

end

config system session-helper 
show

delete 13
end

config voip profile
edit default
config sip
set rtp disable
end
end

execute reboot

HOW TO CONFIGURE THE MANAGEMENT INTERFACE IP

Step - 1

admin@fw# set deviceconfig system type static

Step - 2
admin@fw# set deviceconfig system ip-address <ip address> netmask <netmask> default-gateway <default gateway> dns-setting servers primary <DNS ip address>
Step - 3

admin@fw> show interface management

SSL Network Extender (SNX) disconnects randomly after upgrade to R81

Solutions

Disable ability to open several tabs with Mobile Access portal. This brings some inconvenience:
SNX will be disconnected if user opens portal in another tab
SNX connection will remain active if user closes tab with portal or the whole browser
- Go to $CVPNDIR/phpincs on the gateway
- Find and backup file SNXController.php
- Open SNXController.php for editing
- Find line this.getComponent().start(1, "<?= $snx_session_id ?>"); (approx. line number 703)
- Replace the line with this.getComponent().start(1);
- Save file
- Changes are applied immediately.

Global settings for remote syslog server on CLI

Global settings for remote syslog server.

  config log syslogd setting
      Description: Global settings for remote syslog server.
      set status [enable|disable]
      set server {string}
      set mode [udp|legacy-reliable|...]
      set port {integer}
      set facility [kernel|user|...]
      set source-ip {string}
      set format [default|csv|...]
      set enc-algorithm [high-medium|high|...]
      set ssl-min-proto-version [default|SSLv3|...]
      set certificate {string}
      config custom-field-name
          Description: Custom field name for CEF format logging.
          edit <id>
              set name {string}
              set custom {string}
          next
      end
      set syslog-type {integer}
  end

Identify the Mobility Master Serial Number and Passphrase

The Mobility Master serial number and passphrase are required to generate a license key for that specific VM configuration. The Mobility Master serial number is auto-generated, and does not have to be manually configured.

To identify the Mobility Master passphrase, access Mobility Master via the command-line interface and issue the command show license passphrase.
To identify the Mobility Master serial number, access Mobility Master via the command-line interface and issue the command show inventory.

Use the passphrase, the Mobility Master serial number, and the certificate ID in the licensing website to generate a license key that can be added to sharable license pools on Mobility Master.

References

How to configure NTP on Suse Linux

Manually Configuring NTP in the Network 

The easiest way to use a time server in the network is to set server parameters. For example, if a time server called ntp.example.com is reachable from the network, add its name to the file /etc/ntp.conf by adding the following line:

Dynamic Time Synchronization at Runtime

If the system boots without network connection, ntpd starts up, but it cannot resolve DNS names of the time servers set in the configuration file. This can happen if you use Network Manager with an encrypted WLAN.

If you want ntpd to resolve DNS names at runtime, you must set the dynamic option. Then, when the network is establish some time after booting, ntpd looks up the names again and can reach the time servers to get the time.

Manually edit /etc/ntp.conf and add dynamic to one or more server entries:

Or use YaST and proceed as follows:

  1. In YaST click Network Services › NTP Configuration.
  2. Select the server you want to configure. Then click Edit.
  3. Activate the Options field and add dynamic. Separate it with a space, if there are already other options entered.
  4. Click Ok to close the edit dialog. Repeat the previous step to change all servers as wanted.
  5. Finally click Ok to save the settings.

Source : https://documentation.suse.com/