updated my virtual fortimanager to version 5.0.5 and when I tried to
push and address change to 27 sites that all use the same policy package
and only two showed the change being applied. all the others showed " no
commands to install"
We have created dos sensors to protect against dos attacks but I see the
same ip address will trip the threshold several times. For example the
icmp sweep sensor will block an ip but then I see the same ip sweeping
again and again. it gets blocked bu...
Ok everyone, I' ve searched and can' t find any useful examples or
documenatation on how to build a dataset and report for all webtraffic
for a specific user or ip address. This is for fortigate/fortianalyzer
version 5. We have been using indexer bas...
So we are upgrading all of our fortigates to 100D and our fortianalyzer
is new too. We want to move to version 5 and we have been using indexer
reports. The new OS only uses SQL reporting but the analyzer only has
one sample report template. We need ...
Thanks, I did add the column and it' s working well now. I added the
direct only as the referrals added hundreds of lines to the report and
the FAZ has a bug limiting the number of rows returned in reports.
It appears that this is working to only return the reqtype=direct not
any referrals, which show up because of automatic links on a page.
select coalesce(nullifna(`user`), `srcip`) as
user,to_timestamp(`itime`)::timestamp with time zone as
time,`hostn...
MNANTEL, How about creating a basic forensic report by ip or username?
Our Legal/HR department wants to know what user A was doing on the
internet for the last 60 days. That' s it! where they went, by date,
without the referral links added. I have on...