Technical Tip: OPC Signatures not showing under 'Application and Filter Overrides' in Application Control Security Profile
| Description | This article describes how to get the signatures for OPC on Application Control Security Profile when these are not available under Application and Filter Overrides. |
| Scope | FortiGate |
| Solution | OPC is an industrial communication standard that is being used for data exchange between multi-vendor devices. There are cases when it is needed to allow or block specific signatures related to this standard using Application Control, but these signatures are not available to be used. The default Application Control Profile looks as follows:
These signatures are part of the Industrial Category, which is not available as seen on the previous image. Searching for OPC will not return the desired outputs:
First, it is required to perform the following change on the device to get the Industrial Category under Application Control:
config ips global set exclude-signatures end
Note: Starting from FortiOS 7.4.1, the exclude-signatures setting’s industrial option has been renamed to ot.
After this change and refreshing the page, the Industrial Category will be visible under Application Control:
The OPC signatures will now be available:
|
