As part of its security features, FortiGate units provide a Network Vulnerability Scan. You define assets to monitor, such as servers, workstations, or point-of-sale terminals. Then, the FortiGate unit scans those devices on a regular schedule. The scan checks TCP and UDP ports against a list of known vulnerabilities provided by FortiGuard Services. Scan settings determine how many of the ports are checked. Optionally, all ports are scanned.

To set up vulnerability scanning, go to User & Device > Vulnerability Scan > Scan Definition. To view scan logs, go to User & Device > Vulnerability Scan > Vulnerability Result. For more information, see Vulnerability Scan in this FortiOS Handbook.