Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
lostboy10
New Contributor II

Created on ‎01-17-2025 01:15 AM

Allowing PT Scan for URLs in Fortinet

i have a set of public urls which are required to be VA/PT scanned by an external agency.. the problem is when the traffic gets initiated from the PT server i can see traffic getting blocked in fortigate via an IPS profile mapped in the access policy..i then added the IP of PT server in exemption list post which there were no IPS deny logs ..however, there are logs with 'blank" action and a message of server-rst... there is no issue with application at the same time as it is working fine as checked from a diff system.. i am suspecting a setting in fortigate which is seeing this as an attack but cant figure out what it is..

 

anyone faced a similar issue ? any help is appreciated.

 

thanks

Labels:
132
0 Kudos
1 REPLY 1
AEK
SuperUser
SuperUser

Created on ‎01-17-2025 01:37 AM

Server-rst (reset TCP connection from server side) is an action performed by the server, not by FortiGate. The FortiGate only reports the action in the logs.

AEK
AEK
121
0 Kudos
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.