Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
samandeep
Staff
Staff

Created on ‎10-03-2024 11:27 PM Edited on ‎10-03-2024 11:27 PM By Community Manager

Article Id 344408

Technical Tip: Configure to block Severity-Based Application signatures in Application Control UTM

Description This article describes how to block application signatures based on the Risk severity of the application.
Scope FortiGate v7.x.x.
Solution

To achieve this:

 

severity.png

 

  1. Go to 'Security Profiles'.
  2. Select 'Application Control'. 
  3. Select the Existing or the 'New' Application Sensor for this configuration.
  4. Create 'New Override' under 'Application and Filter Overrides'.
  5. Select type 'Filter' and Action 'Block' 
  6. Hit '+' to add values
  7. Under the 'RISK' entry, Entries should be selected based on the requirement.
  8. Press 'OK' to make that save.

 

application control.png

 

  1. Press 'OK' to make that save for the application sensor.

 

To block application signatures by severity, ensure the Application Sensor is enabled in the relevant Firewall-policy configuration.

 

Related document:

Basic category filters and overrides
163
0 Kudos
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.