Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
carlosaleman
Staff
Staff

Created on ‎10-25-2023 01:51 AM Edited on ‎09-18-2024 09:04 AM By Moderator

Article Id 280765

Technical Tip: How to block the IGMP protocol using a local in policy

Description This article describes how to block the IGMP protocol using a local in policy.
Scope FortiGate 6.0 and above.
Solution

If it is necessary to block a specific protocol when it reaches a FortiGate interface without needing to know the port used, follow this method.

The IGMP protocol will be blocked in this example.

 

First, create a custom firewall service:

 

config firewall service custom

edit IGMP

set category "Network Services"

set protocol IP

set protocol-number 2

next

end

 

Find a list of protocols and their corresponding numbers in the FortiGate handbook.

 

After, it will only be necessary to create the local in policy using the new custom service:

 

config firewall local-in-policy

edit 1

set intf wan1

set srcaddr all

set dstaddr all

set service IGMP

set schedule always

set action deny

next

end

 

This method can be used to block some other protocols as well.

 

Note

In FortiGate V7.6.0 and above, the Local-in-Policy can be found in the GUI itself.

Select Policy & Objects -> Local-In-Policy -> Create New.
Select all the options required and, in the service, select IGMP.

 

spoojary_1-1726674143329.png

 
481
0 Kudos
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.