1. Grafik Arayüz (GUI) ile Yapılandırma
FortiGate yönetim panelini kullanarak bağlayıcıları adım adım oluşturun.
1
Yönetim paneline giriş
FortiGate yönetim arayüzünde tehdit beslemesi bağlayıcısını oluşturun:
Security Fabric → External Connectors → Create New
FortiOS 6.x: Security Fabric → Fabric Connectors
2
Besleme tipi seçimi
# Domain Threat Feeds → Domain Name # IPv4 / IPv6 Threat Feeds → IP Address # URL Threat Feeds → URL
3
Kaynak URL tanımı
Her parça için URI of External Resource alanına adresleri girin. Listeler 128.000 satırlık parçalara bölünür; her parça ayrı connector olmalıdır.
globe Domain
4 parça
https://connector.klcnetwork.com/feeds/domain-part1.txt
https://connector.klcnetwork.com/feeds/domain-part2.txt
https://connector.klcnetwork.com/feeds/domain-part3.txt
https://connector.klcnetwork.com/feeds/domain-part4.txt
network IPv4
1 parça
https://connector.klcnetwork.com/feeds/ip-part1.txt
link URL
1 parça
https://connector.klcnetwork.com/feeds/url-part1.txt
ipv6 IPv6
1 parça
https://connector.klcnetwork.com/feeds/ipv6-part1.txt
subnet IPv6 Subnet
1 parça
https://connector.klcnetwork.com/feeds/ipv6net-part1.txt
Not: Tüm part dosyalarını tanımlamazsanız kurumunuz yalnızca listenin bir bölümünü engeller.
4
Senkronizasyon ayarları
Refresh Rate 60 # dakika Status enable
5
Güvenlik politikasında kullanım
Policy & Objects → Firewall Policy # Destination alanında external feed seçin
2. CLI Yapılandırması
Tüm aktif feed parçaları için hazır blok. Yapıştırdıktan sonra commit edin.
config system external-resource
edit "SGB-DOMAIN-P1"
set type domain
set resource "https://connector.klcnetwork.com/feeds/domain-part1.txt"
set refresh-rate 60 set status enable
next
edit "SGB-DOMAIN-P2"
set type domain
set resource "https://connector.klcnetwork.com/feeds/domain-part2.txt"
set refresh-rate 60 set status enable
next
edit "SGB-DOMAIN-P3"
set type domain
set resource "https://connector.klcnetwork.com/feeds/domain-part3.txt"
set refresh-rate 60 set status enable
next
edit "SGB-DOMAIN-P4"
set type domain
set resource "https://connector.klcnetwork.com/feeds/domain-part4.txt"
set refresh-rate 60 set status enable
next
edit "SGB-IP"
set type address
set resource "https://connector.klcnetwork.com/feeds/ip-part1.txt"
set refresh-rate 60 set status enable
next
edit "SGB-URL"
set category 192
set type category
set resource "https://connector.klcnetwork.com/feeds/url-part1.txt"
set refresh-rate 60 set status enable
next
edit "SGB-IPV6"
set type address
set resource "https://connector.klcnetwork.com/feeds/ipv6-part1.txt"
set refresh-rate 60 set status enable
next
edit "SGB-IPV6NET"
set type address
set resource "https://connector.klcnetwork.com/feeds/ipv6net-part1.txt"
set refresh-rate 60 set status enable
next
end
Feed özeti
| Feed | FortiGate tipi | Parça | Örnek URL |
|---|---|---|---|
| Domain | domain |
4 | https://connector.klcnetwork.com/feeds/domain-part1.txt |
| IPv4 | address |
1 | https://connector.klcnetwork.com/feeds/ip-part1.txt |
| URL | category |
1 | https://connector.klcnetwork.com/feeds/url-part1.txt |
| IPv6 | address |
1 | https://connector.klcnetwork.com/feeds/ipv6-part1.txt |
| IPv6 Subnet | address |
1 | https://connector.klcnetwork.com/feeds/ipv6net-part1.txt |
3. Politika & Doğrulama
- IPv4 / IPv6: Firewall policy → Destination = external block list → DENY (log açık).
- Domain: DNS Filter profilinde external domain list; Web Filter ile ikinci katman.
- URL: Web Filter / URL category feed; tam yol için SSL deep inspection gerekebilir.
- IPv6 subnet: Address tipi feed; büyük CIDR listelerinde model kapasitesini doğrulayın.
Doğrulama Komutları
diagnose sys external-resource entry-list diagnose sys external-resource refresh SGB-DOMAIN-P1 diagnose threat-feed list
Kayıt sayısı paneldeki toplamla uyumlu olmalıdır.