Help
FortiSASE
FortiSASE delivers both a consistent security posture and an optimal user experience for users working from anywhere. Secure your hybrid workforce by closing security gaps, plus simplify operations.
sjoshi
Staff
Staff

Created on ‎08-13-2024 06:32 AM

Article Id 332694

Technical Tip: How to set up an on-fabric detection rule based on local subnets

Description

 

This article outlines the key concepts of an on-fabric detection rule based on the Local IP and GW MAC address.

 

Scope

 

FortiSASE.

 

Solution

 

Go to -> Configuration -> Endpoints -> Profiles
Select On-Fabric rule sets.

Select Create New and configure the On-Fabric detection rule.

 

Picture1.png

 

Set the Local IP of the user and the user GW MAC address.
Go to the user machine, open a CMD prompt, and enter ipconfig to get the user IP address, and arp -a to get the GW MAC address

 

Picture2.png

 

Now, return to the profile and enable 'Bypass FortiSASE when endpoint is on-net', then select the On-Fabric detection Rule configured.

 

Picture3.png

 

Now, return to the profile and enable 'Bypass FortiSASE when endpoint is on-net' and select the On-Fabric detection Rule configured.

393
Suggest New Article
Article Feedback
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.