Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions

    • Handbook

    6.4.0
    7.0.3
    7.0.1
    7.0.0
    6.6.3
    6.6.3
    6.6.1
    6.6.0
    6.5.1
    6.5.0
    6.4.1
    6.4.0
    6.3.3
    6.3.2
    6.3.1
    6.2.3
    6.2.2
    6.2.1
    6.2.0
    6.1.1

    Appendix G: Security Fabric Integration

    Appendix G: Security Fabric Integration

    FortiDDoS integration with FortiOS Security Fabric allows the display of 4 different FortiDDoS graphs and tables on any FortiGate Dashboard for single-pane-of-glass review of FortiDDoS operation and performance.

    These Security Fabric widgets include:

    • Aggregate Drop Graphs with selectable periods from 1-hour to 1-year
    • Top Attacks: Aggregate drops for all SPPs for the past 1-day (24 hour) period
    • Data Path Resources: Real time view of important system table occupancy
    • System Information with firmware release and Serial Number

    There are 4 steps required to configure the Security Fabric integration on FortiDDoS and FortiOS:

    Step 1 - Create a read-only login for FortiDDoS

    Step 2 - Use the FortiGate CLI to create the Fabric Device

    Step 3 - Use the FortiGate GUI to create the API token to communicate with FortiDDoS

    Step 4 - Use the FortiGate GUI to add FortiDDoS Security Fabric widgets to any FortiOS Dashboard (or create a Dashboard specifically for FortiDDoS)

    Step 1 - Create a read-only login for FortiDDoS
    1. In FortiDDoS, go to System > Admin.
    2. Click the Access Profile tab.
    3. Create a new Read-only Profile.
      Note: While you can use an existing Profile, for best security, create a read-only profile for this user.
    4. Click the Administrator tab.
    5. Create a new Administrator that uses the newly created Read-only access profile.
      For added security, you can use the FortiGate Management IP address as the only Trusted Host.
    Step 2 - Use the FortiGate CLI to create the Fabric Device
    1. Login to FortiGate and access the CLI console.
    2. Use the following commands in the FortiGate CLI to add the fabric device entry:
      config system csf
   config fabric-device
      edit "<Name of Device>" //max 35 characters a-Z, “_” or “-“ only, name in double-quotes//
         set device-ip 1.2.3.4 //FortiDDoS Mgmt port IP Address, no subnet//
      next
    end
end

    Step 3 - Use the FortiGate GUI to create the API token to communicate with FortiDDoS
    1. In FortiGate, go to Security Fabric > Fabric Connectors.
    2. Double-click the FortiDDoS icon to edit the Fabric Connector.
      Note: If the FortiDDoS icon is not displayed, refresh the browser.
    3. In the Edit Fabric Connector configuration editor, click Generate to generate the Access token.
    4. Enter the FortiDDoS credentials created in Step 1 - Create a read-only login for FortiDDoS and click OK.
    5. On the Edit Fabric Connector page, click OK then click OK on the confirmation screen.
      The FortiDDoS icon will display a green up-arrow to indicate it is online with the Security Fabric and the system name will display in the Topology list at the top-right.
    Step 4 - Use the FortiGate GUI to add FortiDDoS Security Fabric widgets to any FortiOS Dashboard (or create a Dashboard specifically for FortiDDoS)
    1. In FortiGate, go to Dashboard.
    2. Select any existing Dashboard or create a new Dashboard.
    3. On the Dashboard, click Add Widget and select Fabric Device.
    4. Select the FortiDDoS Device and Widget name from the drop-down menu.
    5. Repeat steps 3 and 4 as needed to add more widgets.

      The available widgets are:
      • Aggregate Drop Graphs with selectable periods from 1-hour to 1-year
      • Top Attacks: Aggregate drops for all SPPs for the past 1-day (24-hour) period
      • Data Path Resources: Real time view of important system table occupancy
      • System Information with firmware release and Serial Number
    Previous
    Next

    Appendix G: Security Fabric Integration

    Appendix G: Security Fabric Integration

    FortiDDoS integration with FortiOS Security Fabric allows the display of 4 different FortiDDoS graphs and tables on any FortiGate Dashboard for single-pane-of-glass review of FortiDDoS operation and performance.

    These Security Fabric widgets include:

    • Aggregate Drop Graphs with selectable periods from 1-hour to 1-year
    • Top Attacks: Aggregate drops for all SPPs for the past 1-day (24 hour) period
    • Data Path Resources: Real time view of important system table occupancy
    • System Information with firmware release and Serial Number

    There are 4 steps required to configure the Security Fabric integration on FortiDDoS and FortiOS:

    Step 1 - Create a read-only login for FortiDDoS

    Step 2 - Use the FortiGate CLI to create the Fabric Device

    Step 3 - Use the FortiGate GUI to create the API token to communicate with FortiDDoS

    Step 4 - Use the FortiGate GUI to add FortiDDoS Security Fabric widgets to any FortiOS Dashboard (or create a Dashboard specifically for FortiDDoS)

    Step 1 - Create a read-only login for FortiDDoS
    1. In FortiDDoS, go to System > Admin.
    2. Click the Access Profile tab.
    3. Create a new Read-only Profile.
      Note: While you can use an existing Profile, for best security, create a read-only profile for this user.
    4. Click the Administrator tab.
    5. Create a new Administrator that uses the newly created Read-only access profile.
      For added security, you can use the FortiGate Management IP address as the only Trusted Host.
    Step 2 - Use the FortiGate CLI to create the Fabric Device
    1. Login to FortiGate and access the CLI console.
    2. Use the following commands in the FortiGate CLI to add the fabric device entry:
      config system csf
   config fabric-device
      edit "<Name of Device>" //max 35 characters a-Z, “_” or “-“ only, name in double-quotes//
         set device-ip 1.2.3.4 //FortiDDoS Mgmt port IP Address, no subnet//
      next
    end
end

    Step 3 - Use the FortiGate GUI to create the API token to communicate with FortiDDoS
    1. In FortiGate, go to Security Fabric > Fabric Connectors.
    2. Double-click the FortiDDoS icon to edit the Fabric Connector.
      Note: If the FortiDDoS icon is not displayed, refresh the browser.
    3. In the Edit Fabric Connector configuration editor, click Generate to generate the Access token.
    4. Enter the FortiDDoS credentials created in Step 1 - Create a read-only login for FortiDDoS and click OK.
    5. On the Edit Fabric Connector page, click OK then click OK on the confirmation screen.
      The FortiDDoS icon will display a green up-arrow to indicate it is online with the Security Fabric and the system name will display in the Topology list at the top-right.
    Step 4 - Use the FortiGate GUI to add FortiDDoS Security Fabric widgets to any FortiOS Dashboard (or create a Dashboard specifically for FortiDDoS)
    1. In FortiGate, go to Dashboard.
    2. Select any existing Dashboard or create a new Dashboard.
    3. On the Dashboard, click Add Widget and select Fabric Device.
    4. Select the FortiDDoS Device and Widget name from the drop-down menu.
    5. Repeat steps 3 and 4 as needed to add more widgets.

      The available widgets are:
      • Aggregate Drop Graphs with selectable periods from 1-hour to 1-year
      • Top Attacks: Aggregate drops for all SPPs for the past 1-day (24-hour) period
      • Data Path Resources: Real time view of important system table occupancy
      • System Information with firmware release and Serial Number
    Previous
    Next