Is that possible to use a FQDN Wildcard group and a FQDN Group in the same policy as destination? Or each policy needs to have just one of that types?
Go to Solution.
Can you please elaborate what you are referring to by "FQDN Wildcard group"?
You may consider to configure a list of wildcard FQDNs and add them to the address group and use address group in the firewall policy.
View solution in original post
I understand you want to use one FQDN Address Group with another Wildcard FQDN Group as Destination address in same Firewall Policy. Yeah you can do it.Please refer to this article for FQDN as destination address: https://docs.fortinet.com/document/fortigate/7.4.0/administration-guide/707266/fqdn-addressesTo use Wildcard FQDN please refer to this article :https://community.fortinet.com/t5/FortiGate/Technical-Tip-Using-wildcard-FQDN/ta-p/196118
Of course. I mean a group with some wildcard addresses (URL).
I need to know if it is possible to apply wildcard and simple fqdn address group in the same policy as destination.
I am not aware about such limitation. It also works for me in the lab.
hm I tried to use wildcard fqdn recently but I couldn't even select them as destination in a policy hence they didn't appear there at all...
"It is a mistake to think you can solve any major problems just with potatoes." - Douglas Adams
Thanks for your reply, Abhimanyu!
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2023 Fortinet, Inc. All Rights Reserved.