Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
fjulianom
New Contributor III

Created on ‎12-12-2017 05:56 AM

About Application Control and IPS licenses

Hi guys,

 

I have a customer's FortiGate without UTM licenses such as AntiVirus or Web Filtering. I have read that Application Control is a free service from release 5.6.1 on.

 

Application Control is now a free FortiGuard service and the database for Application Control signatures is separate from the IPS database

 

http://help.fortinet.com/fos50hlp/56/Content/FortiOS/fortigate-whats-new/Top-SecurityProfiles-app-co...

 

I can see that the FortiGate has the Application Control Signatures correctly updated, but the IPS licenses are expired since customer didn't purchase these type of licenses, and Application Control uses the IPS engine. Then, what is the impact of these mismatches? Will the FortiGate perform Application Control correctly?

 

 

Regards,

Julián

Preview file
64 KB
22697
0 Kudos
2 Solutions
hmtay_FTNT
Staff
Staff
In response to fjulianom

Created on ‎12-15-2017 06:44 AM

Hi Julian,

 

Yes, your Application Control will function normally. The IPS Definition is relatively updated 2-3 days ago. That's the right version.

 

Homing

View solution in original post

9061
0 Kudos
hmtay_FTNT
Staff
Staff
In response to fjulianom

Created on ‎12-15-2017 07:20 AM

Sorry, I means Application Control signatures. (in the past, Application Control signatures were in IPS Definitions. Wrong term now.)

 

IPS Definitions contain the signature, IPS Engine is the engine that does the IPS controls.

View solution in original post

9061
0 Kudos
8 REPLIES 8
fjulianom
New Contributor III

Created on ‎12-13-2017 04:11 AM

Hi guys,

 

Any tip?

 

Regards,

Julián

9018
0 Kudos
hmtay_FTNT
Staff
Staff
In response to fjulianom

Created on ‎12-15-2017 06:44 AM

Hi Julian,

 

Yes, your Application Control will function normally. The IPS Definition is relatively updated 2-3 days ago. That's the right version.

 

Homing

9062
0 Kudos
fjulianom
New Contributor III
In response to hmtay_FTNT

Created on ‎12-15-2017 06:52 AM

Hi Homing,

 

Please, two more questions about this:

 

1. Why was the IPS Definition updated if the FortiGate has no IPS license?

2. What's the difference between IPS Definitions and IPS Engine?

 

Regards,

Julián

9018
0 Kudos
hmtay_FTNT
Staff
Staff
In response to fjulianom

Created on ‎12-15-2017 07:20 AM

Sorry, I means Application Control signatures. (in the past, Application Control signatures were in IPS Definitions. Wrong term now.)

 

IPS Definitions contain the signature, IPS Engine is the engine that does the IPS controls.

9062
0 Kudos
fjulianom
New Contributor III
In response to hmtay_FTNT

Created on ‎12-15-2017 10:27 AM

Hi Homing,

 

Ah ok, then IPS signatures and IPS Definitions are the same thing? And the term IPS Definitions shouldn't be use nowadays?

 

Regards,

Julián

9018
0 Kudos
hmtay_FTNT
Staff
Staff
In response to fjulianom

Created on ‎12-15-2017 10:30 AM

Hey Julian,

 

IPS Definitions means just IPS signatures now instead of both IPS and Application Control.

 

Homing

9019
0 Kudos
fjulianom
New Contributor III
In response to hmtay_FTNT

Created on ‎12-15-2017 10:46 AM

Hi Homing,

 

Ok, it is clear now. I noticed that my IPS Engine is not the last version (I have version 3.00426 and last version is 3.00430 I think). Because Application Control uses IPS Engine and my engine is not updated to last version, does it have any impact in Application Control? Can the IPS Engine be updated automatically via FortiGuard or should it be updated manually? Thank you very much.

 

Regards,

Julián

9019
0 Kudos
ede_pfau
SuperUser
SuperUser
In response to fjulianom

Created on ‎12-16-2017 10:21 AM

The IPS engine is updated automatically via the FortiGuard service. It can take some time for revisions.

Ede Kernel panic: Aiee, killing interrupt handler!
Ede Kernel panic: Aiee, killing interrupt handler!
9019
0 Kudos
Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.