Is there a way to configure FortiGate to not reflect the DHCP server IP when the end user (guest) opens command prompt on the client machine and perform an "ipconfig /all"?
If there is no direct configuration, any other ways for us to hide the IP of DHCP server?
Thank you!
Solved! Go to Solution.
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Hi heyyo,
'ipconfig /all' is support from Window OS.
The only way to hide this from FortiGate is to disable the DHCP server.
@heyyo ,
If the client machine needs a DHCP server to configure itself, it has to communicate with the IP address and hence it has to know the IP address. There is no way to hide the DHCP server IP from the client machine and still expect it to communicate with the server.
If you manage the guest PC as well, you could potentially implement a PAM/endpoint solution to not allow running this command or even not allow opening the cmd.
Hi heyyo,
'ipconfig /all' is support from Window OS.
The only way to hide this from FortiGate is to disable the DHCP server.
@heyyo ,
If the client machine needs a DHCP server to configure itself, it has to communicate with the IP address and hence it has to know the IP address. There is no way to hide the DHCP server IP from the client machine and still expect it to communicate with the server.
If you manage the guest PC as well, you could potentially implement a PAM/endpoint solution to not allow running this command or even not allow opening the cmd.
Thanks for your insights @jiyong & @mpapisetty !
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1633 | |
1063 | |
751 | |
443 | |
210 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.