- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
MAC device and source zone
Hi,
the feature 'config user device' is removes in the last version 7..
Have you an solution to filter sourceIP and MACDevice in one rules ?
I have try SourceIP and DeviceMAC object, but this one allow all source network...
Best regards
Solved! Go to Solution.
- Labels:
-
FortiGate
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
I guess that's not possible.
The firewall address can be of different types. However, the srcaddr under the firewall policy will allow/deny traffic based on 'OR' basis.
SFA
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi @Julien87,
The command "config user device" has been removed since FortiOS 6.2 version.
Please check the below link if it helps.
SFA
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
hi @alif
yes i see that. But a solution exist for use mac object address ? For have the same usage ?
julien
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
You can define the MAC address in the same way as an IP address.
Please select the type "Device (MAC Address)" and mention it in the relevant firewall policy.
SFA
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Yes, but in my rules i have source network and macdevice object.
how about the rule to indicate network and mac must match to be valid.
Actually I have network OR mac for the control of the rule. I would like to have network AND mac address for the check in my source adresse.
Best
Regards
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
I guess that's not possible.
The firewall address can be of different types. However, the srcaddr under the firewall policy will allow/deny traffic based on 'OR' basis.
SFA
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Ok, thanks for your help.
just in case, I try a support ticket. I'll let you know here if there's a solution.
Have a nice day
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi alif,
I just got a return from my case support.
It confirms that there is no AND option.
Moreover it is not planned for later.
Have a nice day
Julien