FortiManager
FortiManager supports network operations use cases for centralized management, best practices compliance, and workflow automation to provide better protection against breaches.
nmerchant
Staff
Staff

Description
This article explains how to create and re-order entries in IPS profile through FortiManager

Solution
1) Create an IPS profile: Add an IPS filter to monitor signatures with medium, high and critical severity and enable a Rate Based Signature.

Go to: Policy & Objects -> Object Configurations -> Security Profiles -> Intrusion Prevention

Use the IPS profile in the appropriate policy.


 
 
 
2) On the policy install preview, the IPS filter entry is above the Rate Based Signature entry.
 
 
 
 
3) On the policy install preview, the IPS filter entry is above the Rate Based Signature entry.
 
 
 
 
 
4) Run the script on the appropriate policy package.
 
 
 
 
 
 
5) The install preview will now show the re-ordering as below.
 
 
 
 
 

6) Push the policy package to the appropriate device.

Note: Any changes to the IPS profile will require modifying the script accordingly and running it on the policy package before the package is pushed to the device.

 

Contributors