Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Dan_Dan
New Contributor

Created on ‎10-13-2017 06:12 AM

Event notification for IOC

Does anyone have any suggestions on how to add an IOC event into event management, so that I can be notified via email?

4532
0 Kudos
4 REPLIES 4
Dan_Dan
New Contributor

Created on ‎01-02-2018 12:08 PM

Wow, I was surprised to see that someone had the exact same question I had. Then I quickly realized it was me.

2249
0 Kudos
sgao_FTNT
Staff
Staff
In response to Dan_Dan

Created on ‎01-03-2018 08:47 AM

Event management is base on single log field check, IOC is based on statistic calculation, so far it cannot be customized in event management.

2249
0 Kudos
chall_FTNT
Staff
Staff
In response to sgao_FTNT

Created on ‎01-03-2018 09:12 AM

But it would be an interesting idea for a new feature to build upon IOC.  To generate a new log entry (maybe a new log type called IOC) for each entry in the IOC listing.  Anyway, best to approach your Fortinet sales team (or partner) if this would be of value to you.

Chris Hall
Fortinet Technical Support
2249
0 Kudos
emnoc
Esteemed Contributor III
In response to chall_FTNT

Created on ‎01-03-2018 12:21 PM

So what and how would you have a trigger for IoC in  the FAZ? Would it be purely network behavioral at that point ( volume  or number of sessions )?

 

PCNSE 

NSE 

StrongSwan  

PCNSE NSE StrongSwan
2249
0 Kudos
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.