Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
live89
Contributor II

Remote FQDN list | feature request

Why it is not possible to add the "Domain Name Threat Feed" to policy as a destination address instead of using DNS filter?

 

The "IP Address threat feed" working just fine, and I was hoping to be able to add the "Domain Name Threat Feed" also as a destination address in the policy instead of "DNS filter".

 

Because using the DNS filter in some environments is not an option as the DNS queries is not forwarded through the firewall, but internally.

 

But when using the "Domain Name Threat Feed" as a destination address , it is more efficient I think. It is like adding a list of FQDNs address group to policy , but managed remotely . The Fortigate pull the list from the remote server , resolve the FQDNs internally , and deny traffic based on its resolution.

 

Maybe guys you consider this in future releases ...

 

Thanks

Thanks
1 REPLY 1
lobstercreed
Valued Contributor

Feature requests should go through your local sales reps.   Fortinet staff rarely monitor this forum at all.  You might have better luck on Reddit at r/fortinet, but the proper channel is your account team.

Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors