Permitting SolarWinds Orion server access to its mothership

Question

I would like to permit a SolarWinds Orion application server access to specified SolarWinds sites ... but block access to the rest of the Internet

Ideally, the Internet Services Database would include an entry for Orion ... and while it does include entries for other SolarWinds products, it doesn't include one for Orion

So, I'm headed toward building my own set of Addresses to produce an 'Orion' Address Group, which I will then use in a Policy

https://thwack.solarwinds.com/product-forums/network-performance-monitor-npm/f/forum/88937/orion-urls-for-firewall-whitelisting

This will be tedious. Has anyone done this already and willing to share the resulting CLI entries?

--sk

Stuart Kendrick

abarushka · Answer

Hello Stuart,

As far as I understand you would like to configure dynamic list of IP addresses which should be allowed. In case I understand your scenario correctly you may consider to configure Threat Feed and use Threat Feed object in the firewall policy. Please find more details by following the link below:

https://docs.fortinet.com/document/fortigate/6.2.0/cookbook/891236/external-block-list-threat-feed-policy

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded