Description |
This article describes a change in behavior when using Device Profiling rules using the Active method. Rules with a custom string filtering on hostname no longer match after upgrading to 9.4.2, 9.2.7, 9.1.9 & 7.2.0 or greater.
Reverse DNS lookups were part of the evaluation process for rules configured to use the Active method. These lookups are no longer performed as of versions 9.4.2, 9.2.7, 9.1.9 & 7.2.0 in order to enhance performance.
This can be verified by running the NMAP scan on an adapter record under Users & Hosts -> Adapters and selecting Run NMAP Scan.
Previously:
Later versions:
Device Profiling rules using the Active method and matching based on Custom strings containing host names will no longer match. |
Scope | FortiNAC v9.4.2, 9.2.7, 9.1.9, 7.2.0 and above. |
Solution |
Customers using Active method custom strings should ensure the string does not filter on hostname:
|
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.