We are planning to implement Dynamic IP pools for IoT users, where the same IP address may be assigned to different users at different times. In the FortiAnalyzer report for Top Applications Bandwidth by user drilldown, we want the report to generate double entries with timestamps for an IP address if it is assigned to both User 1 and User 2, and they use the same applications. To achieve this requirement, we need to modify the FortiAnalyzer report dataset's SQL query. Can anybody provide any inputs on this?
Note: The dynamic IP pools will be implemented on another firewall that is not directly connected to the FortiAnalyzer. However, our firewall is directly connected to FortiAnalyzer, and it receives IoT device traffic through an IPsec tunnel with users Source IP.
This is actually my problem with FortiAnalyzer, especially with such shockingly log queries, as the last time I used SQL was about 20 years ago. If you are not used with SQL then you will probably need the support of a DBA.
How can i contact them?
If you have one DB admin in your company that would be great, otherwise you will need to learn a bit of SQL.
Certainly, I will learn, but since it's an urgent requirement that needs to be resolved quickly, could you please help write the query if you know how?
Unfortunately I didn't touch SQL since 20 years, as I said this is my biggest problem with FAZ. But I'm sure the SQL-experienced community members will help with pleasure.
Ok, Thank you for your valuable inputs. I hope someone with SQL experience will reply soon.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1737 | |
1107 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.