Fortinet black logo

Cookbook

Adding FortiSandbox to Security Fabric

Copy Link
Copy Doc ID 4d801240-7ccc-11e9-81a4-00505692583a:470321
Download PDF

Adding FortiSandbox to Security Fabric

  1. On Edge, go to Security Fabric > Settings and enable Sandbox Inspection.
  2. Select FortiSandbox Appliance and set Server to the IP address of port 1 on the FortiSandbox.

  3. Click Test Connectivity.

    An error message appears because Edge hasn’t been authorized on FortiSandbox.

    External, as the root FortiGate, pushes FortiSandbox settings to the other FortiGates in the Security Fabric.

  4. To verify this, on Accounting, go to Security Fabric > Settings.

  5. In FortiSandbox, go to Scan Input > Device.

    The FortiGates in the Security Fabric (Edge, Accounting, Marketing, and Sales) are listed but the Auth column indicates that the devices are unauthorized.

  6. Edit Edge.
  7. In the Permissions & Policy section, select Authorized.
  8. Repeat this for the other FortiGates.

  9. On Edge, go to Security Fabric > Settings and test the Sandbox Inspection connectivity again. Edge is now connected to the FortiSandbox.

Adding FortiSandbox to Security Fabric

  1. On Edge, go to Security Fabric > Settings and enable Sandbox Inspection.
  2. Select FortiSandbox Appliance and set Server to the IP address of port 1 on the FortiSandbox.

  3. Click Test Connectivity.

    An error message appears because Edge hasn’t been authorized on FortiSandbox.

    External, as the root FortiGate, pushes FortiSandbox settings to the other FortiGates in the Security Fabric.

  4. To verify this, on Accounting, go to Security Fabric > Settings.

  5. In FortiSandbox, go to Scan Input > Device.

    The FortiGates in the Security Fabric (Edge, Accounting, Marketing, and Sales) are listed but the Auth column indicates that the devices are unauthorized.

  6. Edit Edge.
  7. In the Permissions & Policy section, select Authorized.
  8. Repeat this for the other FortiGates.

  9. On Edge, go to Security Fabric > Settings and test the Sandbox Inspection connectivity again. Edge is now connected to the FortiSandbox.