Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
koelschman
New Contributor II

Traffic analysis

Hello, we want to connect a fortigate to span port on a cisco switch and than just to want to analyze traffic comming from the span port. One-Arm Sniffer would have been a choice, but it only logs traffic that matches security profiles. But we want to know the entire traffic, all communications and we want to send the logs towards the analyzer for further diagnostics/reporting. Does anyone know a solution? Regards
2 REPLIES 2
TuncayBAS
Contributor II

Did you think to put together as transparent?
Tuncay BAS
RZK Muhendislik Turkey
FCA,FCP,FCF,FCSS
Tuncay BASRZK Muhendislik TurkeyFCA,FCP,FCF,FCSS
Delta
New Contributor

You could create a custom IPS sig that would match all traffic ... Name LogAll F-SBID( --name " LogAll" ; --pattern " *" ;) and then create a profile that used it...
Thought for the day: Advertising (n): the science of arresting the human intelligence for long enough to get money from it. -- Stephen Leacock.
Thought for the day: Advertising (n): the science of arresting the human intelligence for long enough to get money from it. -- Stephen Leacock.
Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors