Application Control with Source Device Type

Question

Hi all,

I have two different Interfaces, call them "net1" and "net2".

I want to limit the connection between "net1" and "net2" only to one Sourcedevice. So I configured these Device with the mac address and saved this as "Notebook1".

Now I have created one rule to allow access from "net1" to "net2" with "Source Device Type" "Notebook1".

With this policy everything works fine.

Now I want to check application communication between "Notebook1" and "net2". So I set "Application Control" in this policy to "default". Behind "default" the setting is to monitor all applications. At this point it is no longer possible to connect from "Notebook1" to "net2". (the SSL Inspection isn't activated).

If I only activate "Application Control" without "Source Device Type" the connection works fine again.

Can anyone help me to understand this?

Info:

Fortigate 60D

OS: v5.4.0,build925 (Beta 1)

gschmitt · Answer

Sounds more like a bug to me TBH.5.4 is still beta, you should move this over to the beta forum:[link]https://forum.fortinet.com/tt.aspx?forumid=130[/link]

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded