FAQ
Does FortiTester VM supports SR-IOV?
Yes. This was supported long time ago. FortiTester can utilize the NIC to perform faster input and output.
How do I replay large PCAPs in FortiTester?
You can consider using Attack Replay under Security Testing. See Starting an IPS Attack Replay test.
Please note the size of all the uploaded pcap files should not exceed 200 MB. You can upload more files by creating multiple Attack Replay cases and schedule to run them one after another.
As loading multiple 200MB files into memory, your FortiTester device might not have enough memory, e.g. FortiTester 2000E has 32 GB memory, FortiTester 3000E has 64 GB memory.
Can FortiTester run more than one case at a time?
No, FTS does not support more than one case at a time. However, you can schedule the test cases to run automatically one after another. See Scheduling cases.
Does FortiTester support API?
Yes, FortiTester has a very comprehensive REST API. Test cases can be created, launched and monitored using the API. See Using the REST API.
What are the supported hardware & port density?
- FortiTester 2000D - 1x GE RJ45, 4x 10 GE SFP+, 120 GB SSD storage [EOL already]
- FortiTester 2000E - 1x GE RJ45, 4x 10 GE SFP+, 1TB HDD Storage [Replacement of 2000D]
- FortiTester 2500E - 1x GE RJ45, 4x 10 GE SFP+, 1TB HDD Storage
- FortiTester 3000E - 1x GE RJ45, 2x 40 GE QSFP, 2 TB HDD storage
- FortiTester 4000E - 1x GE RJ45, 1x 100 GE QSFP28, 2 TB HDD storage
What are the limitations on CPU, RAM and Storage for different VM licenses?
- FortiTester VM02 - 2 vCPU, 4GB RAM, 60GB Storage
- FortiTester VM04 - 4 vCPU, 8GB RAM, 60GB Storage
- FortiTester VM08 - 8 vCPU, 16GB RAM, 60GB Storage
- FortiTester VM16 - 16 vCPU, 32GB RAM, 60GB Storage
- FortiTester VM32 - 32 vCPU, 64GB RAM, 60GB Storage
Note: The Enterprise mix feature under Performance Testing > Mix Traffic is only available on FortiTester-VMs with VM16 or VM32 license.
Where are the different attack packages and how often are they updated?
Different attack packages are provided based on the FortiGuard services you purchased:
- Basic package
Monthly update containing the latest attack traffic files (about 300+). - Premium package
- Bi-monthly update containing all attack traffic files (including IoT/OT attacks, about 2400+).
- Attack mutation engine (10 evasion techniques out of the box).
- Web Protection signatures.
- ATT&CK abilities package
See Updating FortiGuard for how to update and upgrade the service package.
Where can I download the attack package?
You can download it from Fortinet Support site. See Updating FortiGuard for more information.
What are Test Centre model running conditions? Can they be different models?
Yes, they can be different models, but based on the following conditions:
- For all FortiTester-VMs they have to be properly licensed.
- For all FortiTester-VMs, Center/Slave must have the same vCPU number, VM type, port number.
- Software - Center/Slave must have the same major version number (e.g. 3.8.0 can run with 3.8.1 but NOT 3.7)
- For 3000E, Center/Slave must have the same fanout mode (e.g. 3000E can break out 2 x 40G into 8 x 10G)
- Center/Slave must be in the same group i.e.:
- "2K": ["FTS_2000D", "FTS_2000E", "FTS_2500E"],
- "3K": ["FTS_3000E"],
- "4K": ["FTS_4000E"],
- "VM": ["FTS_VM_KVM"],
- "VM_ESXI": ["FTS_VM"],
- "AWS": ["FTS_VM_AWS"],
- "AWS_BYOL": ["FTS_VM_AWS_BYOL"],
- "AZR_BYOL": ["FTS_VM_AZURE_BYOL"],
- "OCI_BYOL": ["FTS_VM_OCI_BYOL"],
- "GCP_BYOL": ["FTS_VM_GCP_BYOL"]
How can we reset FortiTester admin password? Is there a maintainer account like FortiGate?
FortiTester does have a maintainer account, and it can be used to reset password, but all configurations and results on your FortiTester device will be removed once the password is reset.
Perform the following steps to reset password:
-
Log in to FortiTester's CLI with the maintainer user's credential.
- Enter
1.