Dynamische blocklists
Met deze config kun je dynamische lijsten met IPs inladen in de fortigate om vervolgens op basis van deze lijsten verkeer te blokkeren.
config system external-resource
edit "Threadfeed Domains Generic"
set uuid a2d3eee2-69cc-51ee-d56e-d808fb749e7a
set type domain
set category 192
set resource "https://raw.githubusercontent.com/emberstack/threat-feed/main/Feed/List/ThreatFeed.Domains.Generic.txt"
set refresh-rate 1
next
edit "Threadfeed Domains Advertising"
set uuid b17c9e58-69cc-51ee-8bae-15f6cbce27ea
set type domain
set category 193
set resource "https://raw.githubusercontent.com/emberstack/threat-feed/main/Feed/List/ThreatFeed.Domains.Advertising.txt"
set refresh-rate 1
next
edit "Russia IP list"
set uuid b17fbbf6-69cc-51ee-6d95-bfa064a118ce
set type address
set resource "https://filestore.fortinet.com/fortiguard/russia_reg_ip.list"
set refresh-rate 1
next
edit "Donetsk IP list"
set uuid b18241be-69cc-51ee-8e8f-598117ab23c7
set type address
set resource "https://filestore.fortinet.com/fortiguard/dnr_lnr_ip.list"
set refresh-rate 1
next
edit "Iran IP list"
set uuid b184c33a-69cc-51ee-6d4c-8d538c9007a8
set type address
set resource "https://filestore.fortinet.com/fortiguard/iran_reg_ip.list"
set refresh-rate 1
next
edit "Krim IP list"
set uuid b1877a62-69cc-51ee-b910-0535eba64f26
set type address
set resource "https://filestore.fortinet.com/fortiguard/crimea_ip.list"
set refresh-rate 1
next
edit "Emerging Block List"
set uuid b18a3572-69cc-51ee-d58a-309266297b5f
set type address
set resource "https://rules.emergingthreats.net/fwrules/emerging-Block-IPs.txt"
next
edit "Compromised IPs"
set uuid b18c227e-69cc-51ee-927d-7a33097c90de
set type address
set resource "https://rules.emergingthreats.net/blockrules/compromised-ips.txt"
next
end