Dear all,
I find an interesting KB to use a txt file as a Firewall address for policy control.
Using Dynamic Address Lists in Fortigate Firewalls using 6.2.+ – InfoSec Monkey
I wonder if there is any Free resource on the internet that can be applied to as well?
Thanks.
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
I've setup several threat feeds on my FortiGates for both IP address and Category Threat Feeds under Security Fabric\External Connectors. Just do a YouTube search for "FortiGate Threat Feed" (minus the quotes) and several video examples pop up. The one I used was
https://www.youtube.com/watch?v=CarI6_URN90
The user in the video linked uses Cisco's Talos Intelligence's site that hosts several lists, but there are more out there for sure. My only tweak to this is to set your refresh rate higher since some of these listing sites will not like you checking in so frequently...i.e... no reason to check every couple of minutes when 120 or 240 minutes will do for example...they don't want someone constantly checking and hounding them as they themselves might view this as an attack of sorts. Also, not sure the ability of adding Threat Feeds was in fortiOS 6.2 (since you referenced that in your link provided), but I know it has been in 6.4 and newer.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.