This forum is for all security enthusiasts to discuss Fortinet's latest & evolving technologies and to connect & network with peers in the cybersecurity hemisphere. Share and learn on a broad range of topics like best practices, use cases, integrations and more. For support specific questions/resources, please visit the Support Forum or the Knowledge Base.
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
I have done this several ways in the past for audits:
1- manually edited the config item sections into a single line to be able to import into excel and then work there to create a nice format that shows the rules and what each item was in a single line so they didn't have to do all the cross referencing. Not high tech but gets the task done. Some auditors though want to see the real thing so made sure what I was going to do was okay before spending the time.
2 - similar to above but for large configs, worked with regex commands in textpad to limit the manual edits before I could pull into Excel
3 - Used image captures of the rules from the GUI and supplemented this with object details and group details so the auditor had the full info.
4-provided read only views on the firewall or shared desktops.
I have not found a good way to ever get a full conversion into a format in an automated fashion that was sufficient for the auditor.
Pete
I have done this several ways in the past for audits:
1- manually edited the config item sections into a single line to be able to import into excel and then work there to create a nice format that shows the rules and what each item was in a single line so they didn't have to do all the cross referencing. Not high tech but gets the task done. Some auditors though want to see the real thing so made sure what I was going to do was okay before spending the time.
2 - similar to above but for large configs, worked with regex commands in textpad to limit the manual edits before I could pull into Excel
3 - Used image captures of the rules from the GUI and supplemented this with object details and group details so the auditor had the full info.
4-provided read only views on the firewall or shared desktops.
I have not found a good way to ever get a full conversion into a format in an automated fashion that was sufficient for the auditor.
Pete
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.