Configuring Web Filtering Options - Fortinet FortiGate FortiGate-1000A Administration Manual
Fortinet fortigate fortigate-1000a: user guide
Hide thumbs
Also See for FortiGate FortiGate-1000A:
- Install manual (58 pages) ,
- Quick start manual (2 pages) ,
- Administration manual (458 pages)
Table of Contents
Advertisement
Protection profile
240
Pass fragmented emails Enable or disable passing fragmented email for mail protocols
Oversized file/email
Add signature to
outgoing emails
Configuring web filtering options
Figure 114:Protection profile web filtering options
The following options are available for web filtering through the protection profile. See
"Web filter" on page 329
Web Content Block
Web URL Block
Web Exempt List
Web Script Filter
Web resume download
block
01-28011-0254-20051115
(IMAP, POP3, SMTP). Fragmented email cannot be scanned for
viruses.
Select block or pass for files and email that exceed configured
thresholds for each protocol. To configure the oversized file
threshold, go to Antivirus > Config > Config. The maximum
threshold for scanning in memory is 10% of the FortiGate unit RAM.
Note: For email scanning, the oversize threshold refers to the final
size of the email after encoding by the email client, including
attachments. Email clients may use a variety of encoding types and
some encoding types translate into larger file sizes than the original
attachment. The most common encoding, base64, translates 3
bytes of binary data into 4 bytes of base64 data. So a file may be
blocked or logged as oversized even if the attachment is several
megabytes less than the configured oversize threshold.
Create and enable a signature to append to outgoing email (SMTP
only).
for more web filter configuration options.
Enable or disable web page blocking for HTTP traffic based on the
banned words and patterns in the content block list.
Enable or disable web page filtering for HTTP traffic based on the
URL block list.
Enable or disable web page filtering for HTTP traffic based on the
URL exempt list. Exempt URLs are not scanned for viruses.
Enable or disable blocking scripts from web pages for HTTP traffic.
Enable to block downloading parts of a file that have already been
partially downloaded. Enabling this option will prevent the
unintentional download of virus files hidden in fragmented files.
Note that some types of files, such as PDF, fragment files to
increase download speed and enabling this option can cause
download interruptions.
Firewall
Fortinet Inc.
Advertisement
Table of Contents
