What's the difference between Signals, Transactions, and Indicators?

Clarifying on some vague terminology

What is Single Scan Multi Action (SSMA)?

Examining how Zscaler processes data for improved efficiency.

What are the high-level layers of Zscaler architecture?

A quick intro into the 3 logical layers of Zscaler architecture.

What's the difference between IPS Signatures and IPS Filters within an IPS Sensor on FortiGate?

Similar terms. Important differences.

What's the difference between "extended" and "extreme" AV databases on FortiGates?

💡This is part of an on-going series in cybersecurity foundations. Check the cyber 101 article tag index from time to time for more content. The FortiGate AV scanning engine relies on virus definitions for some of its traditional analysis. These signatures are stored in AV databases. Depending on what model

What's the difference between Local Traffic logs and Forward Traffic logs on FortiGates?

Comparing some similar terms in logging

What is split-task VDOM mode on FortiGates?

Examining a nifty feature for separating management functions.

What are the differences between the various IP pool types on FortiGate?

Clarifying some popular terms

What's the difference between Central SNAT mode and Policy NAT mode on FortiGates?

Unraveling the differences between these two UI modes.

What does the Reliable Logging feature on FortiGate/FortiAnalyzer do?

Because in order for logs to be useful, they need to exist...

What is the "proto=" field in FortiGate logs?

RFCs, lions, and bears. Oh my!

What is conserve mode on FortiGates?

Sounds interesting, right? Let's explore.