FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
hlngan
Staff
Staff
Description
This article describes how to summarize the same customized signature with same attack ID.
Solution
When multiple VDOMs are enable, sometimes user will want to summarize the same customized signature with same attack ID.

This is not supported. You cannot create custom signature with same attack_id in two or more different VDOMs in FortiOS.
# config ips custom
    edit "TestSignature"
        set signature "F-SBID(--attack_id 1001; --name  \”TestSignature......
    …
next
Example: if same attack ID 1001 in the First VDOM is happening and adding another one into Second VDOM is wanted, get the following:
TestSignature: custom signature id ‘1001’ is in use
 
object set operator error, -2 discard the setting
Command fail. Return code 1
Solution.

1) Use a different attack ID in the customized signature across the VDOMs.
2) Leave the attack ID as blank and FortiOS will assigned a random Attack ID to the signature.
# config ips custom
    edit "TestSignature"
        set signature "F-SBID(--name  \”TestSignature......
    …
next

Contributors