Nextcloud + FORTINET firewall 

any idea how to work around it?

i can't sync with Nextcloud at work. when connecting it says wrong certificate, and shows a fortinet certificate.

Nextcloud + FORTINET firewall 

@tootbrute fortinet is doing a man-in-the-middle on your nextcloud connection. you need some way of tunneling out of your work network. wireguard, ssh tunnels, or sshuttle might work, since these are "weird hacker things" that "enterprise-level solutions" might not know how to handle.

Follow

Nextcloud + FORTINET firewall 

@tootbrute as a long-term solution, having a wireguard tunnel to your server is a pretty neat solution, I recommend it if you are in a position to set it up. nice and easy, and works like a charm.

· · Web · 2 · 0 · 1

Nextcloud + FORTINET firewall 

@rysiek i can use TOR browser to get around it's blocking of random websites...like Wikipedia?!?! and The Guardian?

hmm i'll search for info on trying this out.

so a wireguard tunnel is like VPN. so i would be using my home connection? correct

Nextcloud + FORTINET firewall 

@tootbrute yes, exactly. but wireguard is way easier to set-up than (say) OpenVPN, and is a nicely roaming connection, meaning it will automagically reconnect when you move networks, etc.

Nextcloud + FORTINET firewall 

@rysiek alright sounds great. reading up on it. thanks for pointing me in the right direction.

Nextcloud + FORTINET firewall 

@rysiek @tootbrute Wireguard is awesome. If/when I need to pay for a VPN service I'll go with Mullvad because they're one of the first to support it.

Nextcloud + FORTINET firewall 

@michel_slm @rysiek @tootbrute Fortinet? Need to check it out. Its not fortnite, right?

Nextcloud + FORTINET firewall 

@michel_slm
NordVPN supports it too.
@rysiek @tootbrute

Nextcloud + FORTINET firewall 

@rysiek @tootbrute how do you do the tls then?

Nextcloud + FORTINET firewall 

@bluszcz @tootbrute TLS goes inside the WireGuard tunnel. WireGuard just connects you to your server, routing and DNS is up to you.

Nextcloud + FORTINET firewall 

@rysiek @tootbrute that's kind of wicked

Sign in to participate in the conversation
Mastodon

Server run by the main developers of the project 🐘 It is not focused on any particular niche interest - everyone is welcome as long as you follow our code of conduct!