Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
1mm
Contributor

Created on ‎11-27-2023 08:12 AM Edited on ‎02-26-2024 05:49 AM By Community Manager

Adding Fortilink to existing LAG

Hello,

 

We have fortigate In azure, we would like to Prevent Port Scanning. Is it possible and how I can do it?
I tried create IPS policy and select Port.scanning, but it didn't work 

 

Is it possible prevent port scanning with IPS Profile? 

Labels:
1556
0 Kudos
1 Solution
hbac
Staff
Staff
In response to 1mm

Created on ‎11-28-2023 08:40 AM

Hi @1mm,

 

Yes, you can set action to monitor. 

 

Regards, 

View solution in original post

1468
4 REPLIES 4
Dannу
Contributor

Created on ‎11-27-2023 09:31 AM

IPS: https://www.fortiguard.com/encyclopedia/ips/43814

AppControl: Technical Tip: How to block NMAP port scanner

 

Don't forget to block Internet port scanners, such as Shodan, Censys, Qualys, Shadowserver etc.

1533
hbac
Staff
Staff

Created on ‎11-27-2023 11:12 AM

Hi @1mm,

 

You can use DoS policy to prevent port scans: https://docs.fortinet.com/document/fortigate/7.4.1/administration-guide/771644/dos-policy

 

Regards, 

1524
1mm
Contributor

Created on ‎11-27-2023 11:38 PM

Hello, thanks for replies, is it possible don't block anything and just do logging? 

1501
0 Kudos
hbac
Staff
Staff
In response to 1mm

Created on ‎11-28-2023 08:40 AM

Hi @1mm,

 

Yes, you can set action to monitor. 

 

Regards, 

1469
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.