Skip to main content
AUT_Maverick
AUT_Maverick
Visitor III
February 29, 2024
Question

Define Policys

  • February 29, 2024
  • 1 reply
  • 840 views

Hi!

 

How can i implemented a policy for that case:

 

I often have the situation that segments are passed behind the firewall that were previously routed on a core. As a result, the required communications are not known and you first have to authorise everything with an Any rule.
With Palo, I have the option of recognising which apps have been detected via the rule and can then create/adapt the explicit activation beforehand.
I wonder if there is something similar on the Forti that allows me to refine the set of rules.

 

BR 

1 reply

AEK
SuperUser
AEK
SuperUser
February 29, 2024

Hi

If I understand well your need I think you are looking for learn mode which has been introduced in 7.2.

https://docs.fortinet.com/document/fortigate/7.2.0/new-features/898777/introduce-learn-mode-in-security-policies-in-ngfw-mode

AEK
    Terms & ConditionsAccessibility statement