Fortinet black logo

Agentless ZTNA with FortiSIEM UEBA and FortiGate

Home FortiSIEM 7.0.3 Agentless ZTNA with FortiSIEM UEBA and FortiGate
7.0.3
7.1.6
7.1.5
7.1.4
7.1.3
7.1.2
7.1.1
7.1.0
7.0.3
7.0.2
7.0.1
7.0.0
6.7.9
6.7.8
6.7.7
6.7.6
6.7.5
6.7.4
6.7.3
6.7.2

Sharing information with FortiGate

Sharing Information with FortiGate

FortiGate will use a Security Fabric Threat Feed Integration to connect to FortiSIEM using watchlist API to pull back the list of IP addresses.

The IP addresses can then be used in a number of scenarios that include:

  • Apply threat feed as source in firewall policy to deny access to VIP.

  • Apply threat feed as source in a local-in policy to deny IKE/SSL/HTTPS or any administrative access destined to the FortiGate WAN interface.

  • Apply threat feed as source SSL VPN or IPsec VPN based firewall policy.

Previous
Next

Sharing Information with FortiGate

FortiGate will use a Security Fabric Threat Feed Integration to connect to FortiSIEM using watchlist API to pull back the list of IP addresses.

The IP addresses can then be used in a number of scenarios that include:

  • Apply threat feed as source in firewall policy to deny access to VIP.

  • Apply threat feed as source in a local-in policy to deny IKE/SSL/HTTPS or any administrative access destined to the FortiGate WAN interface.

  • Apply threat feed as source SSL VPN or IPsec VPN based firewall policy.

Previous
Next