Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Adding Fortilink to existing LAG
Hello,
We have fortigate In azure, we would like to Prevent Port Scanning. Is it possible and how I can do it?
I tried create IPS policy and select Port.scanning, but it didn't work
Is it possible prevent port scanning with IPS Profile?
Solved! Go to Solution.
Labels:
- Labels:
-
FortiGate
-
Port policy
1 Solution
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
4 REPLIES 4
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
IPS: https://www.fortiguard.com/encyclopedia/ips/43814
AppControl: Technical Tip: How to block NMAP port scanner
Don't forget to block Internet port scanners, such as Shodan, Censys, Qualys, Shadowserver etc.
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi @1mm,
You can use DoS policy to prevent port scans: https://docs.fortinet.com/document/fortigate/7.4.1/administration-guide/771644/dos-policy
Regards,
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hello, thanks for replies, is it possible don't block anything and just do logging?
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content