| Description | This article describes how to configure and connect an external Threat block List to FortiGate without installing any third party web server application. |
| Scope | FortiGate. |
| Solution |
In scenarios where no web server installation is possible, FortiGate can fetch the Threat Feed details on a Windows machine through a python TCP web server socket.
Follow the steps described in this article to configure this.
Create a new folder in the C directory and save the file inside the folder:
Run the following command on Windows:
python -m http.server 8080
If the socket has still not been created, run the following from CMD:
C:\Users\fortinet>cd C:\web <----- Enter the directory.
Now, the PC should be listening on port 8080. Test it by running a telnet from FortiGate:
Create a new Threat Feed list in FortiGate:
Use the URL 'http://<PC-IP>:8080/IP.txt'. Here, IP is the file name, and PC-IP is the machine address towards FortiGate.
View the CMD on Windows:
In the above output, the Firewall pulls the file content from the Windows system. Make sure permissions are granted to this folder where the file is located.
Check the Threat Feed list status, which should be up:
Related article: Technical Tip: External threat list (threat feed) is not working (connector is showing down) |
