FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
Description This article describes how to summarize the same customized signature with same attack ID. Solution When multiple VDOMs are enable, sometimes user will want to summarize the same customized signature with same attack ID.
This is not supported. You cannot create custom signature with same attack_id in two or more different VDOMs in FortiOS.
# config ips custom edit "TestSignature" set signature "F-SBID(--attack_id 1001; --name \”TestSignature...... … next
Example: if same attack ID 1001 in the First VDOM is happening and adding another one into Second VDOM is wanted, get the following:
TestSignature: custom signature id ‘1001’ is in use
object set operator error, -2 discard the setting Command fail. Return code 1
Solution.
1) Use a different attack ID in the customized signature across the VDOMs. 2) Leave the attack ID as blank and FortiOS will assigned a random Attack ID to the signature.
# config ips custom edit "TestSignature" set signature "F-SBID(--name \”TestSignature...... … next
