Why it is not possible to add the "Domain Name Threat Feed" to policy as a destination address instead of using DNS filter?
The "IP Address threat feed" working just fine, and I was hoping to be able to add the "Domain Name Threat Feed" also as a destination address in the policy instead of "DNS filter".
Because using the DNS filter in some environments is not an option as the DNS queries is not forwarded through the firewall, but internally.
But when using the "Domain Name Threat Feed" as a destination address , it is more efficient I think. It is like adding a list of FQDNs address group to policy , but managed remotely . The Fortigate pull the list from the remote server , resolve the FQDNs internally , and deny traffic based on its resolution.
Maybe guys you consider this in future releases ...
Thanks
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Feature requests should go through your local sales reps. Fortinet staff rarely monitor this forum at all. You might have better luck on Reddit at r/fortinet, but the proper channel is your account team.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1713 | |
1093 | |
752 | |
447 | |
231 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.