Hi,
We are using Netskope and for Chromebooks it uses a Proxy, which appears to be blocked by the Proxy group, which we need to keep enabled.
How do we create a custom application signature for Netskope and allow it for Application, DNS & Web Filtering so it functions properly.
Blocking applications with custom signatures | FortiGate / FortiOS 7.2.9 | Fortinet Document Library
I was looking at above and thinking of doing an Allow, but not sure what the signature portion needs for values.
Has anyone does this and have instructions we can follow?
Thanks.
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Hi,
Please review the below links to guide you further:
https://community.fortinet.com/t5/FortiGate/Technical-Tip-Custom-IPS-signatures-from-Fortinet/ta-p/1...
https://community.fortinet.com/t5/FortiGate/Technical-Tip-How-to-apply-and-validate-a-custom-applica...
https://docs.fortinet.com/document/ipsengine/7.4.0/custom-ips-and-application-control-signature-synt...
https://community.fortinet.com/t5/FortiGate/Technical-Tip-custom-application-signature-to-block-Face...
Thanks,
Hi,
For the application signature we need to allow:
gateway-kcdsb.goskope.com tcp-443
gateway-backup-kcdsb.goskope.com tcp-443
addon-kcdsb.goskope.com tcp-443
download-kcdsb.goskope.com tcp-443
achecker-kcdsb.goskope.com tcp-443
eproxy-kcdsb.goskope.com port 8081
vpn-kcdsb.goskope.com tcp-443
sfchecker.goskope.com tcp-443
I'm thinking it would be something like:
F-SBID(--name "Netskope.Custom";--protocol tcp,udp; --service http,https; --dst_port 443,8081; --flow from_client; --pattern ".goscope.com"; --context host; --distance 0,context; --no_case; --pattern "/v/"; --context uri; --within 15,context; --no_case; --context uri; --distance 0; --weight 20;--app_cat <#>;)
Not sure if the syntax is correct and for app_cat what would I replace <#> with to have it go under Cloud.IT?
Thanks.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1692 | |
1087 | |
752 | |
446 | |
228 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.