Fortinet Document Library

Version:

Version:

Version:


Table of Contents

New Features

Download PDF
Copy Link

FortiSigConverter management extension tool to import Snort rules 6.4.3

FortiManager supports Snort, a popular open source Network Intrusion Detection System (NIDS), using the FortiSigConverter application.

You can download FortiSigConverter from registery.fortinet.com directly in FortiManager using the Management Extensions module.

To enable FortiSigConverter in the GUI:
  1. Go to Management Extensions.

  2. Click FortiSigConverter to download the management extension, and then open the application.

    The FortiSigConverter dashboard is displayed.

  3. To import a signature file, click Import SNORT Signature, and click OK.

  4. Click OK to confirm the import.

    The signatures are added to the signatures list.

  5. To push Snort rules to FortiManager, open a signature file and select the rules you want to push.

  6. Click Push to FortiManager, and click OK.

  7. Click OK in the dialog box to complete the process.

To view IPS signatures in FortiManager:
  1. In FortiManager, go to Policy & Objects > Object Configuration.
  2. Click Tools > Display Options.

  3. In the Security Profiles module , select Enable IPS Custom Signature.

  4. To view the signatures, go to Security Profiles > IPS Signatures.

To enable FortiSigConverter in the CLI:

config system docker

set fortisigconverter enable

end

FortiSigConverter management extension tool to import Snort rules 6.4.3

FortiManager supports Snort, a popular open source Network Intrusion Detection System (NIDS), using the FortiSigConverter application.

You can download FortiSigConverter from registery.fortinet.com directly in FortiManager using the Management Extensions module.

To enable FortiSigConverter in the GUI:
  1. Go to Management Extensions.

  2. Click FortiSigConverter to download the management extension, and then open the application.

    The FortiSigConverter dashboard is displayed.

  3. To import a signature file, click Import SNORT Signature, and click OK.

  4. Click OK to confirm the import.

    The signatures are added to the signatures list.

  5. To push Snort rules to FortiManager, open a signature file and select the rules you want to push.

  6. Click Push to FortiManager, and click OK.

  7. Click OK in the dialog box to complete the process.

To view IPS signatures in FortiManager:
  1. In FortiManager, go to Policy & Objects > Object Configuration.
  2. Click Tools > Display Options.

  3. In the Security Profiles module , select Enable IPS Custom Signature.

  4. To view the signatures, go to Security Profiles > IPS Signatures.

To enable FortiSigConverter in the CLI:

config system docker

set fortisigconverter enable

end