Presentation is loading. Please wait.

Presentation is loading. Please wait.

Internal test : Confidential 224B Port Quarantine Simple test

Published byMyles Tobias Harris Modified over 6 years ago

Similar presentations

Presentation on theme: "Internal test : Confidential 224B Port Quarantine Simple test"— Presentation transcript:

1 Internal test : Confidential 224B Port Quarantine Simple test
Fortinet Japan Internal test : Confidential 224B Port Quarantine Simple test Kiyoshi Kodama, SE Japan 29-Aug-2007

2 Port Quarantine Simple test
Test purpose I would like to confirm to how works 224B is detect and block to both anomaly (large_icmp) packet and Virus (eicar.com) file with dynamic port quarantine configuration. Configuration FortiGate 224B v3.0 B005 Switch mode, VLAN 1 (fe0, fe1…..fe26), Intra-VLAN PC-1 ( /24) PC-2 ( /26) FTP server Port-1 = PC-1, Port-26 = PC-2 TP mode (Virtual IP for management /24) Traffic exchange between port1 and port26. Test scenarios Test1: PC1 try to download virus file from PC-2 via FTP. Test2: PC1 ping (large icmp) to PC2. Fortinet Confidential 224B Port Quarantine Simple test

3 Fortinet Confidential 224B Port Quarantine Simple test
Configuration 2 subscribers are connecting to 224B, port-1 and port-26. FTP server is runs at PC-2. 224B VLAN ID 1 Port-1……………Port-26 PC-2 FTP server PC-1 Fortinet Confidential 224B Port Quarantine Simple test

4 Fortinet Confidential 224B Port Quarantine Simple test
Launch CMD program at PC-1, and then try to download virus (eicar.com) file from FTP server (PC-2). 224B ftp> get eicar.com VLAN ID 1 Port-1……………Port-26 PC-2 FTP server PC-1 Fortinet Confidential 224B Port Quarantine Simple test

5 Fortinet Confidential 224B Port Quarantine Simple test
224B is detect virus and block port #26 PC-1 user receive error message on CMD. 224B ftp> get eicar.com 200 PORT command successful. 150 File status OK ; about to open data connection 550-Transfer failed. The file eicar.com is infected with the virus EICAR_TEST_ ILE. File quarantined as . 550 * ftp> VLAN ID 1 Port-1……………Port-26 PC-2 FTP server PC-1 Fortinet Confidential 224B Port Quarantine Simple test

6 System>Status>Statistics>Attack log>FTP
WEB Management Screen: Quarantined Port status (Virus) and Log Switch > Status System>Status>Statistics>Attack log>FTP Fortinet Confidential 224B Port Quarantine Simple test

7 Fortinet Confidential 224B Port Quarantine Simple test
PC-1 user ping large_icmp packet to PC-2. 224B # ping large ICMP packet VLAN ID 1 Port-1……………Port-26 PC-2 FTP server PC-1 Fortinet Confidential 224B Port Quarantine Simple test

8 Fortinet Confidential 224B Port Quarantine Simple test
224B is detect large_icmp packet and block port #1 PC-1 can’t access inter/intranet. 224B # ping large icmp packet Response time out… VLAN ID 1 Port-1……………Port-26 PC-2 FTP server PC-1 Fortinet Confidential 224B Port Quarantine Simple test

9 Fortinet Confidential 224B Port Quarantine Simple test
WEB Management Screen: Quarantined Port status (IPS) Switch > Status Fortinet Confidential 224B Port Quarantine Simple test

10 System>Status>Statistics>Attack log>IPS
WEB Management Screen: Log (IPS) System>Status>Statistics>Attack log>IPS Fortinet Confidential 224B Port Quarantine Simple test

11 Fortinet Confidential 224B Port Quarantine Simple test
Key points If are you using Intranet-VLAN. Keep it in your mind… Ensure to enable secure port configuration , switch > port > interface > secure port. Fortinet Confidential 224B Port Quarantine Simple test

12 Fortinet Confidential 224B Port Quarantine Simple test
Continue…. Then enable to Intra-VLAN policy when you create new profile. Fortinet Confidential 224B Port Quarantine Simple test

13 Fortinet Confidential 224B Port Quarantine Simple test
Thank you Fortinet Confidential 224B Port Quarantine Simple test

Download ppt "Internal test : Confidential 224B Port Quarantine Simple test"

Similar presentations

Transfer Content to a Website What is FTP? File Transfer Protocol FTP is a protocol – a set of rules Designed to allow files to be transferred across.

Transfer Content to a Website What is FTP? File Transfer Protocol FTP is a protocol – a set of rules Designed to allow files to be transferred across.
CCNA3: Switching Basics and Intermediate Routing v3.0 CISCO NETWORKING ACADEMY PROGRAM Chapter 6 – Switch Configuration Switch Configuration Starting the.

CCNA3: Switching Basics and Intermediate Routing v3.0 CISCO NETWORKING ACADEMY PROGRAM Chapter 6 – Switch Configuration Switch Configuration Starting the.
Certification Training for Technicians Part 6 – Trouble shooting Page 6 - 1.

Certification Training for Technicians Part 6 – Trouble shooting Page
ITIS 1210 Introduction to Web-Based Information Systems Chapter 44 How Firewalls Work How Firewalls Work.

ITIS 1210 Introduction to Web-Based Information Systems Chapter 44 How Firewalls Work How Firewalls Work.
IP TERMINALS.

IP TERMINALS.
Cosc 4765 Network Security: Routers, Firewall, filtering, NAT, and VPN.

Cosc 4765 Network Security: Routers, Firewall, filtering, NAT, and VPN.
© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 W. Schulte Chapter 5: Inter-VLAN Routing Routing And Switching.

© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 W. Schulte Chapter 5: Inter-VLAN Routing Routing And Switching.
© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 5: Inter-VLAN Routing Routing & Switching.

© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 5: Inter-VLAN Routing Routing & Switching.
Data Networking Fundamentals Unit 7 7/2/2015 1 Modified by: Brierley.

Data Networking Fundamentals Unit 7 7/2/ Modified by: Brierley.
Activating Pilot Account ( first time users ) Web-based Activation Browse to 1. Click on the link on the lower right that says.

Activating Pilot Account ( first time users ) Web-based Activation Browse to 1. Click on the link on the lower right that says.
hotEx RADIUS Manager Installation

hotEx RADIUS Manager Installation
TCP/IP Tools Lesson 5. Objectives Skills/ConceptsObjective Domain Description Objective Domain Number Using basic TCP/IP commands Understanding TCP/IP3.6.

TCP/IP Tools Lesson 5. Objectives Skills/ConceptsObjective Domain Description Objective Domain Number Using basic TCP/IP commands Understanding TCP/IP3.6.
Advanced Networking for DVRs

Advanced Networking for DVRs
© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 5: Inter-VLAN Routing Routing And Switching.

© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 5: Inter-VLAN Routing Routing And Switching.
Firewall Typical Networking and Troubleshooting Common Faults.

Firewall Typical Networking and Troubleshooting Common Faults.
Module 7: Configuring TCP/IP Addressing and Name Resolution.

Module 7: Configuring TCP/IP Addressing and Name Resolution.
© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 3: Implementing VLAN Security Routing And Switching.

© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 3: Implementing VLAN Security Routing And Switching.
ProtectionProfiles. 2 Fortinet Technologies Protection Profiles Protection profiles control t the type of traffic protected t HTTP t FTP t IMAP t POP3.

ProtectionProfiles. 2 Fortinet Technologies Protection Profiles Protection profiles control t the type of traffic protected t HTTP t FTP t IMAP t POP3.
Lab How to Use WANem Last Update 2011.08.01 1.1.0 Copyright 2011 Kenneth M. Chipps Ph.D. www.chipps.com 1.

Lab How to Use WANem Last Update Copyright 2011 Kenneth M. Chipps Ph.D. 1.
Chapter review Chapter 5 test.

Chapter review Chapter 5 test.

Similar presentations

Ads by Google