Help
FortiWeb
A FortiWeb can be configured to join a Security Fabric through the root or downstream FortiGate.
Ahmed_Galal
Staff
Staff

Created on ‎02-24-2025 07:42 AM

Article Id 378071

Troubleshooting Tip: Scan history is showing zero requests count after running vulnerability scan

Description This article describes how to troubleshoot a non-working vulnerability scan with zero results.
Scope FortiWeb.
Solution

Step 1: Enable the vulnerability scan feature at System -> Config -> Feature Visibility.


web vulnerability scan.png

Step 2: At the Scan Profile make sure to include http:// Or https:// in the domain. 

domain.png

 

Step 3: Make sure the domain is resolving to the real server IP and not the public IP, or use the real server IP address instead of the domain.

nslookup.png

 

Step 4: Packet captures the connection between FortiWeb and the real server at Network -> Packet Capture

packet capture.png

 

Related document:
Configuring vulnerability scan profiles
Labels:
89
0 Kudos
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.