Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
MORAMADAN
New Contributor III

Created on ‎09-09-2024 03:19 AM

DNS filter and dynamic group

Hello Friends,

                    I have DNS filter profile and applied on the internet accessing security roles.

I need "if possible" to configure what like a dynamic object group that contains all hosts that are trying to connect to any malicious domain.

is this applicable in fortios? and how please.

Fortios ver. 7.x

TIA,

M.Ramadan
M.Ramadan
Labels:
529
0 Kudos
3 REPLIES 3
AEK
SuperUser
SuperUser

Created on ‎09-09-2024 04:20 AM Edited on ‎09-09-2024 07:49 AM

Hello Ramadan

I think you can do it with automation stitch, using trigger "Compromised Host Quarantine", than as action you may write a script to add the address to the group.

Hope it helps.

Edit: Forgot to mention, for that you also need FortiAnalyzer

AEK
AEK
502
AlexC-FTNT
Staff
Staff

Created on ‎09-09-2024 04:23 AM

That's a feature that requires advanced Network monitoring tools (SIEM).

Something similar can be done (to some extent) when a FortiAnalyzer is configured to collect logs.
You can either set up playbooks in FAZ, or set up automation stitch to trigger events based on the logs appended by FAZ:

https://docs.fortinet.com/document/fortianalyzer/7.6.0/administration-guide/106885/playbook-template...


- Toss a 'Like' to your fixxer, oh Valley of Plenty! and chose the solution, too00oo -
500
MORAMADAN
New Contributor III

Created on ‎09-12-2024 01:06 AM

Thank you gentelmen, I think I will pass since I dont have SEIM or fortiAnalyser. at least for time being.

M.Ramadan
M.Ramadan
403
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.