Solutions

Http and ip source

Modified on 2025-06-10 22:02:42 +0200

Hey to all.

I am using FortiGate 60D. Send all logs to PRTG server.

How can I use PRTG sensor (which sensor) to check which IP address opened a page, for example www.paessler.com. There are two sensors for HTTP and HTTPS but does not show source IP address which opened the page but only the event - page has been opened. Info I have got is - someone opened the page www.paessler.com in time 7 ms. I need information: www.paessler.com opened by IPs 192.168.2.7, 192.168.2.8, 192.168.2.14 etc. www.cnn.com opened by IPs 192.168.2.4, 192.168.2.9, 192.168.2.12 etc.

Thanks for help how to setup sensor.

Article Comments

Using a Flow/Packet Sniffer sensor, PRTG will give you the informtaion which ip address opened a web page. The Fortinet firewall, from my research, only support SFlow. Which is a statistically sampled flow, it may not give enough detail.

The Fortinet supports port monitoring. So, another option is to install a Remote probe with a packet sniffer on the port (with Port Monitoring enabled). Hopefully, it will provide you with the information you require.

Sep, 2016 - Permalink

Disclaimer:
The information in the Paessler Knowledge Base comes without warranty of any kind. Use at your own risk. Before applying any instructions please exercise proper system administrator housekeeping. You must make sure that a proper backup of all your data is available.

Http and ip source

Article Comments

Search

Attention

Related Articles