Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
Kraven2323
Staff
Staff

Created on ‎04-26-2022 03:06 AM

Article Id 210402

Technical tip : Domain Name threat feed only applicable in DNS filter profile

Description

This article describe that FortiOS version V6.2 onwards the external block list (threat Feed) in firewall policy can be done.

Among one of the category, Domain name threat feed can be configured.
Scope

It is possible to configure the Domain Name threat feed using the following navigation:

Security Fabric -> External Connectors, select 'Create New' -> Threat Feeds -> Domain Name.

 

Kraven2323_0-1650960677588.png

 

The Domain Name contains one domain per line. Simple wildcards are supported.

It is available as a Remote Category in DNS Filter profiles.

 

Example:

 

mail.*.example.com
*-special.example.com
www.*example.com
example.com

 

Kraven2323_1-1650960753017.png

 

The Domain Name threat feed can only be applied to DNS filter profile.

 

Kraven2323_2-1650961655446.png

 
Reference https://docs.fortinet.com/document/fortigate/6.2.0/cookbook/195303/external-resources-for-dns-filter
4034
Submit Article Idea
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.