Hi, Is there a possibility to send Forticlient logs mostly security and
system events that are fetched by FortiEMS to a third party SIEM.Right
now, the only option I see is to send FortiEMS Event logs to Syslog. We
dont have the SIEM on a public IP a...
Hi, Is there a possibility to send Forticlient logs mostly security and
system events that are fetched by FortiEMS to a third party SIEM.Right
now, the only option I see is to send FortiEMS Event logs to Syslog. We
dont have the SIEM on a public IP a...
We are seeing lot of discrepancy on the vulnerability reported by
FortiEMS on Dashboard and what shows up on client sometimes. Most of the
time we would have to get access to the machine to find the path which
is being reported as vulnerable for that...
Fortigate Version : 7.2.8 Strange thing we are seeing is that everytime
there is a blocked connection to a destination - could be via any of the
security profile, Fortigate initiates a local traffic to the same
destination. The traffic does get denie...
This question was more regarding where can I see the path details of
various vulnerabilities reported in the diagnostic or Forticlient Logs
that I can fetch from the FortiEMS server. For example, the EMS mentions
that there is Microsoft Edge vulnerab...
Does this then require a rule to allow such traffic for webfilter to
function correctly? The original traffic (client to internet) was denied
by UTM even though the TLS probes (Fortigate to Server) did not go
through. Makes me wonder if it needs the ...
This is taking a SDWAN outbound rule towards the Hub site and then going
out to internet from there. But I dont think that is the concern here.
This traffic should never have originated from the local fortigate
itself.