Fortinet Document Library

Version:

Version:

Version:


Table of Contents

New Features

Download PDF
Copy Link

DNS security report 7.0.3

The new DNS Security Report provides an in depth summary of detected threats from DNS traffic.

The indicators of compromise (IOC) feature must be enabled on FortiAnalyzer to get data for charts in the report. If the IOC feature is not enabled, the impacted charts in the generated report will be empty with a warning message stating, "No license for the Indicators of Compromise (IOC) service".

To enable IOC in the FortiAnalyzer CLI:
Tooltip

IOC is enabled by default.

  1. Enter the following command:

    config system log ioc

    set status enable

To use the DNS Security Report template:
  1. Go to Reports > Templates.

    From the Preview column, you can click PDF or HTML to preview the report in that format.

  2. Select the checkbox for Template - DNS Security Report.
  3. From the More dropdown, you can click Clone to clone the template and make adjustments.

    You can also click Create Report to create a report using the template.

To run the DNS Security Report:
  1. Go to Reports > All Reports.
  2. Double-click the row for DNS Security Report.
  3. In the Generated Reports tab, click Run Report.
  4. Once the report is generated, click a format in the Format column to view the report.

    Below is a sample of the report in PDF.

DNS security report 7.0.3

The new DNS Security Report provides an in depth summary of detected threats from DNS traffic.

The indicators of compromise (IOC) feature must be enabled on FortiAnalyzer to get data for charts in the report. If the IOC feature is not enabled, the impacted charts in the generated report will be empty with a warning message stating, "No license for the Indicators of Compromise (IOC) service".

To enable IOC in the FortiAnalyzer CLI:
Tooltip

IOC is enabled by default.

  1. Enter the following command:

    config system log ioc

    set status enable

To use the DNS Security Report template:
  1. Go to Reports > Templates.

    From the Preview column, you can click PDF or HTML to preview the report in that format.

  2. Select the checkbox for Template - DNS Security Report.
  3. From the More dropdown, you can click Clone to clone the template and make adjustments.

    You can also click Create Report to create a report using the template.

To run the DNS Security Report:
  1. Go to Reports > All Reports.
  2. Double-click the row for DNS Security Report.
  3. In the Generated Reports tab, click Run Report.
  4. Once the report is generated, click a format in the Format column to view the report.

    Below is a sample of the report in PDF.