FortiSandbox and AWS S3 Bucket Scanning


In this recipe, you will learn how to set up the AWS Storage Gateway and FortiSandbox for AWS S3 Bucket scanning.

You can use FortiSandbox through NFS mount is to leverage AWS Storage Gateway. By mounting a file share and mapping it to an Amazon S3 bucket using AWS Storage Gateway, you can configure AWS S3 as the NFS or SMB network share for FortiSandbox malware analysis.

Create AWS Storage Gateway

  1. Go to the AWS Storage Gateway console.
  2. Click Create Gateway
  3. Under Select Gateway Type, select File Gateway
  4. Under Select Host Platform, select Amazon EC2.
  5. Click Launch Instance and configure the instance according to the Set Up Instructions for Amazon EC2 displayed on the page. 
  6. View the AWS Gateway instance on the EC2 Console. Find the Public IP or assign it to your Elastic IP.
  7. Go back to the Create Gateway page, and click Next
  8. Enter the AWS Storage Gateway IP Address.
  9. Once it connects to the Gateway, select your timezone, gateway name information, and storage configuration.
  10. Click Activate Gateway.
  11. Click Save and Continue. You can see your Storage Gateway on the console.

  12. Click Create File Share.
  13. Fill in your S3 Bucket Information.
  14. Click Create File Share.

  15. You can test the NFSv4 file share for S3 Bucket using a Linux Server. You will be able to see your files and be able to copy files into the S3 Bucket locally on Linux. 

Configure AWS FortiSandbox to Watch and Scan NFSv4 Share Folder

  1. Log into your AWS FortiSandbox
  2. Go to Scan Input > Network Share.
  3. Click Create New.
  4. Fill in the information for FortiSandbox to access the NFSv4 share by Storage Gateway. 
  5. Save the configuration. Your S3 Bucket share folder will be scanned by FortiSandbox.

Fortinet Technical Documentation

Contact Fortinet Technical Documentation at
Fortinet Technical Documentation

Latest posts by Fortinet Technical Documentation (see all)