As title - not working for me in firewall policies
I have a ticket open, but wonder if anyone seen the same?
Solved! Go to Solution.
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
didnt see an issue, how is it exactly not working?
@James_G, can you give more detail on why you had to change? Did you have a source port specified? Or was something else going on?
From the release notes: Only IP and Protocol are matched and source port is ignored when ISDB is applied as source in policy. But it seems like this wouldn't usually cause issues.
Cut / paste from Fortinet support:
The root cause is that ISDB uses 3 parameters (protocol, port and IP address) to identify a service. In most cases, it is correct. Unfortunately, it is not true for the Office365 case as a source. As TCP traffic usually selects a random port as source port. So, we just ignore the port when identifying an Internet service as source. As an example, the traffic is simplified to <6, 0, 104.47.12.50> from <6, 38045, 104.47.12.50>. In the ISDB, this <6, 104.47.12.50> matches another internet service 327880. So, the traffic is getting recognized as 327880. Therefore, we are having an unmatched case.
when would you use Office365 as a source?
ah interesting way to use it. would think that many of the IPs are just for incoming traffic towards Office.365, but i assume enough of them did work for this setup?
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1734 | |
1107 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.