Hello,
i am looking for a fast and efficient way to check if 800 or so ip addresses are contained in the fortigate blacklists.
Can you help me?
Thank you
Solved! Go to Solution.
Created on 03-09-2022 08:07 AM Edited on 03-09-2022 08:11 AM
I don't think there is a possibility to run this check for multiple IPs.
You can list the entire internet-service database:
#diag firewall internet-service list
and run a script on the IPs in the list, but many of those IPs are listed as a range, so that will be problematic.
You can also use the API to retrieve this list:
Hello Daniele,
What feature exactly do you refer to? There are no blacklists dowloaded in the FortiGate.
The services used in the FortiGate are available here: https://www.fortiguard.com/ (scroll down). You can check the ISDB (not a blacklist) but can't check botnet IP reputation.
You can check the blacklisted IPs in any online tool - for example https://mxtoolbox.com/blacklists.aspx
Hi Alex,
sorry if I explained myself wrong. I mean that I would like to check if these ip are contained in the malicious lists reported on the Fortigate, such as in the Internet Service Database -> Malicious-Malicious.Server section, or Botnet-C & C. Server without having to check one ip address at a time but giving the whole list.
Created on 03-09-2022 08:07 AM Edited on 03-09-2022 08:11 AM
I don't think there is a possibility to run this check for multiple IPs.
You can list the entire internet-service database:
#diag firewall internet-service list
and run a script on the IPs in the list, but many of those IPs are listed as a range, so that will be problematic.
You can also use the API to retrieve this list:
Ok, thanks for the support
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1737 | |
1108 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.