FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
raureada
Staff
Staff
Article Id 321961
Description This article describes how to set up IPS packet capture logging.
Scope FortiGate.
Solution

Auto-capturing of packets if they match an IPS anomaly.

This enhances the view of erroneous or suspicious packets.

 

This feature can be enabled within the IPS profile by CLI or GUI as shown below:

 

ips11.JPG

ips111.JPG

 

Once a packet matches an IPS signature with enabled packet logging, the icon below will appear:

 

ips1111.JPG

 

To download the packet capture, select the logs, then select details. Select Archived Data, then select the download button.

 ips11111.JPG

Contributors