By Manny Fernandez

May 8, 2019

Creating SPAN port on Fortigate By: Brent Klespies

Here is a blog post from a friend and colleague Brent Klespies

I had a customer wondering how to create a SPAN port on a FortiGate to their IDS provider Bricta. Although we provide this feature they are very big on multi-layer security.

Here are the steps to accomplish sending information from a FortiGate to an outside source in a SPAN mode.

First most Entry to Mid-tier products have a pre-configured Soft or Hard Switch on the main ports. Larger models (+1500 series) will already have the ports as independent. ย For something like the 400E, you will need to do the following steps (If you do have a larger model skip to step 2)

Network>Interface>LAN

Delete an unused port, and apply the change

Then from the main page, select Create New> Interface

From here give this a name, โ€œSPAN1โ€, and select the Interface Type as a Hardware Switch.

Next enable the SPAN toggle as shown. You can then choose your source and destination.

Recent posts

  • At its core, IEEE 802.1X is a network layer... Full Story

  • In case you did not see the previous FortiNAC... Full Story

  • This is our 5th session where we are going... Full Story

  • Now that we have Wireshark installed and somewhat configured,... Full Story

  • The Philosophy of Packet Analysis Troubleshooting isn't about looking... Full Story