When enabled, Policy Analyzer MEA is installed on FortiManager. Policy Analyzer is a management extension application (MEA) that is released and signed by Fortinet to run on FortiManager.
You must be in ADOM version 7.0 or later to access Policy Analyzer MEA.
Policy Analyzer MEA is an automated tool with a wizard. It works with Security Policies in learn mode from a managed FortiGate to analyze logs sent to FortiAnalyzer. Based on the analyzed traffic, administrators can choose to automatically create a policy block to:
- Block malicious traffic
- Allowed learned traffic - permissive mode
- Allowed learned traffic - restricted mode
A policy block is automatically created and inserted in the policy package, and the policy package is installed to the target FortiGate.