Hi All,
I am positively surprised that lot of users shares their experience of customized datasets. I am searching for little help with datasets showing denied UTM events by Users.
Output could look something like that:
1. Time of the event – User (IP) – blocked WEB Site – WEB Category;
2. Time of the event – User (IP) – blocked Application – App Category ;
3. Time of the event – User (IP) – blocked file (Antivirus) – risk Category;
4. Time of the event – User (IP) – blocked Intrusion event (IPS) – risk Severity;
I have found in forum similar datasets with webfilter and application control, but did not found Antivirus and IPS event datasets.
I would appreciate some suggestions how to make something similar for FAZ v5.0.10.
Thanks.
Regards,
Armands
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.