Fortinet FortiGate Series Administration Guide

Fortinet FortiGate Series

764 pages

To Next Page

To Next Page

To Previous Page

To Previous Page

Page #736 background image

Loading...

Page #736 background image

Example configuration: logging all FortiGate traffic Log&Report

FortiGate Version 4.0 MR1 Administration Guide

736 01-410-89802-20090903

http://docs.fortinet.com/ • Feedback

next

edit port2

set log enable

end

4 Use the following command to enable logging of other traffic. This option is only

available when logging to an external syslog server.

config log syslogd filter

set other-traffic enable

end

5 Go to UTM > Intrusion Protection > IPS Sensor and select Create New to add an IPS

Sensor.

Edit the IPS Sensor and select Add Pre-defined Override to add the following

predefined IPS signatures to the sensor.

• Invalid.Protocol.Header

• TCP.Bad.Flags

• TCP.Invalid.Packet.Size

Enable each of these signatures, set Action to Block and enable Logging.

6 Enter the following CLI commands to add a DoS policy (called an interface policy in the

CLI) that includes the IPS Sensor.

config firewall interface-policy

edit 1

set interface <interface_name>

set srcaddr all

set dstaddr all

set service ANY

set ips-sensor-status enable

set ips-sensor <sensor_name>

end

Where <sensor_name> is the name of the IPS sensor added above.

Table of Contents

Other manuals for Fortinet FortiGate Series

Quick Start Guide14 pages

Install Guide51 pages

Questions and Answers:

Need help?

Do you have a question about the Fortinet FortiGate Series and is the answer not in the manual?

Fortinet FortiGate Series Specifications

General

Model	FortiGate Series
Category	Firewall
Throughput	Varies by model
Interfaces	Varies by model
Concurrent Sessions	Varies by model
VPN Support	Yes
High Availability	Yes
Firewall Throughput	Varies by model
VPN Throughput	Varies by model
IPS Throughput	Varies by model
NGFW Throughput	Varies by model
Threat Protection Throughput	Varies by model
New Sessions per Second	Varies by model
Power Supply	Varies by model
Security Features	Firewall, IPS, Application Control, Web Filtering, Antivirus, VPN
Virtual Domains	Yes
Form Factor	Desktop, Rackmount

Related product manuals

Preview: Fortinet FortiGate

Fortinet FortiGate

Preview: Fortinet FortiGate 60M

Fortinet FortiGate 60M

Preview: Fortinet FortiGate 70D

Fortinet FortiGate 70D

Preview: Fortinet FortiGate-80C

Fortinet FortiGate-80C

Preview: Fortinet FortiGate 1000D

Fortinet FortiGate 1000D

Preview: Fortinet FortiGate FortiGate-50

Fortinet FortiGate FortiGate-50

Preview: Fortinet FortiGate FortiGate-60

Fortinet FortiGate FortiGate-60

Fortinet FortiGate 1000F Series

Fortinet FortiGate FortiGate-500

Preview: Fortinet FortiGate FortiGate-800

Fortinet FortiGate FortiGate-800

Fortinet FortiGate FortiGate-100

Preview: Fortinet FortiGate FortiGate-50B

Fortinet FortiGate FortiGate-50B