Fortinet black logo

New Features

Default Event Handlers for FortiMail and FortiWeb Incident Response

Copy Link
Copy Doc ID bc40d227-4cc1-11e9-94bf-00505692583a:531619
Download PDF

Default Event Handlers for FortiMail and FortiWeb Incident Response

The following new default handlers have been added for FortiMail and FortiWeb devices.

  • Default-FML-Threat-Detection-By-Email.
  • Default-FWB-Threat-Detection-By-Hostname.
To view the FortiMail and FortiWeb default handlers:
  1. Go to Incidents & Events > Event Handler List.
    In a Fabric ADOM, both handlers will be displayed.

    • Default-FML-Threat-Detection-By-Email filters definition:

    • Default-FWB-Threat-Detection-By-Hostname filters definition:

    • Sample events generated by the FortiMail and FortiWeb default handlers:

Default Event Handlers for FortiMail and FortiWeb Incident Response

The following new default handlers have been added for FortiMail and FortiWeb devices.

  • Default-FML-Threat-Detection-By-Email.
  • Default-FWB-Threat-Detection-By-Hostname.
To view the FortiMail and FortiWeb default handlers:
  1. Go to Incidents & Events > Event Handler List.
    In a Fabric ADOM, both handlers will be displayed.

    • Default-FML-Threat-Detection-By-Email filters definition:

    • Default-FWB-Threat-Detection-By-Hostname filters definition:

    • Sample events generated by the FortiMail and FortiWeb default handlers: