Fortinet FortiGate Series Administration Manual page 590

DLP archiving
590
To DLP archive HTTP and HTTPS (web) sessions
This procedure describes how to configure DLP archiving for HTTP and HTTPS sessions.
You can use similar procedures to configure DLP archiving for other protocols. This
procedure is valid for FortiGate units that support SSL content scanning and inspection.
This procedure describes editing the All-HTTP DLP rule to enable HTTPS POST and
HTTPS GET, confirming that the Content_Archive DLP sensor to contains the All-HTTP
rule, then selecting the Content_Archive DLP sensor to a protection profile.
1 Go to UTM > Data Leak Prevention > Rule and edit the All-HTTP rule.
2 Select HTTPS POST and HTTPS GET.
Figure 361: Selecting HTTPS POST and HTTPS GET in the All-HTTPS DLP rule
3 Verify that Rule is set to Always so that the rule matches all HTTP and HTTPS post
and get sessions.
4 Select OK to save the changes to the rule.
5 Go to UTM > Data Leak Prevention > Sensor and edit the Content_Archive sensor.
Figure 362: The Content_Archive DLP sensor
6 Verify that the Content_Archive sensor includes the All-HTTP rule.
7 Edit the All_HTTP rule in the sensor and verify that Archive is set to Full.
Data Leak Prevention
FortiGate Version 4.0 MR1 Administration Guide
01-410-89802-20090903
http://docs.fortinet.com/ • Feedback