FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
Description This article explains how to configure and add custom port and port ranges into the predefined ISDB entries.
Solution Use the new CLI config firewall internet-service-addition command in system global to tune ISDB for the environment.
To add custom port range in global:
#config firewall internet-service-addition edit 65646 set comment "Add custom port-range:tcp/8080-8090 into 65646" config entry edit 1 set protocol 6 config port-range edit 1 set start-port 8080 set end-port 8090 next end next end next end
To execute internet-service refresh to apply the change:
#FGT-201E (65646) # end
Warning: Configuration will only be applied after rebooting or using the 'execute internet-service refresh' command.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.