Cybersecurity Forum

This forum is for all security enthusiasts to discuss Fortinet's latest & evolving technologies and to connect & network with peers in the cybersecurity hemisphere. Share and learn on a broad range of topics like best practices, use cases, integrations and more. For support specific questions/resources, please visit the Support Forum or the Knowledge Base.

Humongous
New Contributor

How to whitelist a pentester's external IP on Fortigate 200d? TIA!

How to whitelist a pentester's external IP on Fortigate 200d? TIA!
1 Solution
jward_FTNT

Agreed.. unless they want to create a baseline of what trash is on the network…

But whitelisting is mostly pointless.

From: Rony Charbel Moussa via Management: [mailto:management@lists.fusecommunity.fortinet.com]
Sent: Wednesday, December 13, 2017 5:25 PM
To: management@lists.fusecommunity.fortinet.com
Subject: [Management:] - RE: How to whitelist a pentester's external IP on Fortigate 200d? TIA!


Why do you need to whitelist the IP address ? The Penetration tester should do his tests while all your defenses are online !

-----End Original Message-----


*** Please note that this message and any attachments may contain confidential and proprietary material and information and are intended only for the use of the intended recipient(s). If you are not the intended recipient, you are hereby notified that any review, use, disclosure, dissemination, distribution or copying of this message and any attachments is strictly prohibited. If you have received this email in error, please immediately notify the sender and destroy this e-mail and any attachments and all copies, whether electronic or printed. Please also note that any views, opinions, conclusions or commitments expressed in this message are those of the individual sender and do not necessarily reflect the views of Fortinet, Inc., its affiliates, and emails are not binding on Fortinet and only a writing manually signed by Fortinet's General Counsel can be a binding commitment of Fortinet to Fortinet's customers or partners. Thank you. ***

View solution in original post

2 REPLIES 2
rmoussa
Contributor

Why do you need to whitelist the IP address ? The Penetration tester should do his tests while all your defenses are online !

Rony Moussa
Fortinet NSE Certified: Level 8
Rony MoussaFortinet NSE Certified: Level 8
jward_FTNT

Agreed.. unless they want to create a baseline of what trash is on the network…

But whitelisting is mostly pointless.

From: Rony Charbel Moussa via Management: [mailto:management@lists.fusecommunity.fortinet.com]
Sent: Wednesday, December 13, 2017 5:25 PM
To: management@lists.fusecommunity.fortinet.com
Subject: [Management:] - RE: How to whitelist a pentester's external IP on Fortigate 200d? TIA!


Why do you need to whitelist the IP address ? The Penetration tester should do his tests while all your defenses are online !

-----End Original Message-----


*** Please note that this message and any attachments may contain confidential and proprietary material and information and are intended only for the use of the intended recipient(s). If you are not the intended recipient, you are hereby notified that any review, use, disclosure, dissemination, distribution or copying of this message and any attachments is strictly prohibited. If you have received this email in error, please immediately notify the sender and destroy this e-mail and any attachments and all copies, whether electronic or printed. Please also note that any views, opinions, conclusions or commitments expressed in this message are those of the individual sender and do not necessarily reflect the views of Fortinet, Inc., its affiliates, and emails are not binding on Fortinet and only a writing manually signed by Fortinet's General Counsel can be a binding commitment of Fortinet to Fortinet's customers or partners. Thank you. ***
Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.