FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
rbarnes
Staff
Staff
Article Id 316021
Description

This article describes how to source an external resource (also known as a threat feed connector).

Scope Fortios 7.0,7.2.7.4
Solution

It is not possible to source an external resource through the local VDOM. It can only be sourced from the root VDOM.

 

VDOM FG-traffic:

 

Threat feed configured.

Internet access on this VDOM.

 

VDOM root:

 

Management VDOM.

No internet access on this VDOM.

 

VDOMS:

 

externalresourceimage.png

 

Error message:

 

externalresourceFG-traffic.png

 

Create a working setup as follows:

 

  1. Create a loopback interface on the root VDOM and set up an IP address on it.

external resource rootimage.png

 

 

  1. Create a loopback interface on the Fg-traffic VDOM and set the same IP address on it.

 

externalresourcefgtrafficimg.png

 

  1. Set the source IP address.

external resource kb.png

 

It will now be sourced from the loopback address on the FG-traffic VDOM.

Contributors