TCP RST package
Go to Scan Policy and Object > TCP RST Package to view the FortiSandbox Sniffer TCP RST list.
The following options are available:
Refresh |
Refresh the TCP RST Package list. |
View |
Select a package version number and click the View button from the toolbar. The following information is displayed:
|
Package Options |
Configure how the packages are generated. |
Download Blocklist |
Download the FSA Detected Blocklist or Custom Blocklist. |
Upload Custom Blocklist |
Upload a user-defined blocklist to FortiSandbox. File requirements:
Example: http://www.example.com www.test.net http://192.0.2.100 198.51.100.101 After the file is uploaded it will overwrite previous versions of the custom blocklist if there are any. In an HA Cluster , the custom blocklist will only be synced to a new primary node when failover occurs. |
Delete Custom Blocklist |
Delete a user-defined blocklist. |
The TCP RST Package page displays the following information:
Version |
The TCP RST package version. |
Release Time |
The TCP RST package release time. |
Total |
The total number of URLs inside the package. |
To configure a TCP RST package:
- Go to Scan Policy and Object > TCP RST Package.
- Click Package Options and configure the following settings.
Includes past 14 day(s) of data Enter a value between 1-365 days. Includes job data of the following ratings Select Malicious, High Risk or Medium Risk. - Click OK.