Remote FQDN list | feature request

Forum|Forum|5 years ago
August 13, 2020
1 reply
2078 views

Why it is not possible to add the "Domain Name Threat Feed" to policy as a destination address instead of using DNS filter?

The "IP Address threat feed" working just fine, and I was hoping to be able to add the "Domain Name Threat Feed" also as a destination address in the policy instead of "DNS filter".

Because using the DNS filter in some environments is not an option as the DNS queries is not forwarded through the firewall, but internally.

But when using the "Domain Name Threat Feed" as a destination address , it is more efficient I think. It is like adding a list of FQDNs address group to policy , but managed remotely . The Fortigate pull the list from the remote server , resolve the FQDNs internally , and deny traffic based on its resolution.

Maybe guys you consider this in future releases ...

lobstercreed

New Member

Feature requests should go through your local sales reps. Fortinet staff rarely monitor this forum at all. You might have better luck on Reddit at r/fortinet, but the proper channel is your account team.

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded