I have a Fortigate 800C in Flow based inspection and configured one-arm sniffer mode on an interface and configured a firewall sniffer with below config
config firewall sniffer
set ips-sensore-status enable
set ips-sensor sniffer-profile
set logtraffic all
set interface port9
set status enable
But, i am not able to see the packet info/data on Log&Report->sniffer Traffic Page on Fortigate UI. Can anyone check/let me know is there any config/setting required on fortigate for it to work in sniffer mode for IDS...?
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.