Traffic Quota Control Replacement Messages; Ssl Vpn Replacement Message; Replacement Message Tags - Fortinet FortiGate Series Administration Manual

Replacement messages

Traffic quota control replacement messages

SSL VPN replacement message

Replacement message tags

262
Table 38: NAC quarantine replacement messages
Message name Description
DLP Message Action set to Quarantine IP address or Quarantine Interface in a DLP sensor and
the DLP sensor added to a protection profile adds a source IP address or a
FortiGate interface to the banned user list. The FortiGate unit displays this
replacement message as a web page when the blocked user attempts to
connect through the FortiGate unit using HTTP on port 80 or when any user
attempts to connect through a FortiGate interface added to the banned user list
using HTTP on port 80.
When a user session is blocked by the traffic shaper, the Traffic quota control messages
are displayed for users.
The SSL VPN login replacement message is an HTML replacement message that formats
the FortiGate SSL VPN portal login page. You can customize this replacement message
according to your organization's needs. The page is linked to FortiGate functionality and
you must construct it according to the following guidelines to ensure that it will work.
• The login page must be an HTML page containing a form with
ACTION="%%SSL_ACT%%" and METHOD="%%SSL_METHOD%%"
• The form must contain the %%SSL_LOGIN%% tag to provide the login form.
• The form must contain the %%SSL_HIDDEN%% tag.
Replacement messages can include replacement message tags. When users receive the
replacement message, the replacement message tag is replaced with content relevant to
the message. Table 39 lists the replacement message tags that you can add.
Table 39: Replacement message tags
Tag Description
The URL that will immediately delete the current policy and close the
%%AUTH_LOGOUT%%
session. Used on the auth-keepalive page.
%%AUTH_REDIR_URL%% The auth-keepalive page can prompt the user to open a new window
which links to this tag.
The name of the content category of the web site.
%%CATEGORY%%
The IP address of the request destination from which a virus was
%%DEST_IP%%
received. For email this is the IP address of the email server that sent
the email containing the virus. For HTTP this is the IP address of web
page that sent the virus.
The email address of the sender of the message from which the file was
%%EMAIL_FROM%%
removed.
The email address of the intended receiver of the message from which
%%EMAIL_TO%%
the file was removed.
%%FAILED_MESSAGE%% The failed to login message displayed on the auth-login-failed page.
The name of a file that has been removed from a content stream. This
%%FILE%%
could be a file that contained a virus or was blocked by antivirus file
blocking. %%FILE%% can be used in virus and file block messages.
The FortiGuard - Web Filtering logo.
%%FORTIGUARD_WF%%
The Fortinet logo.
%%FORTINET%%
The link to the FortiClient Host Security installs download for the
%%LINK%%
Endpoint Control feature.
FortiGate Version 4.0 MR1 Administration Guide
01-410-89802-20090903
http://docs.fortinet.com/
System Config
• Feedback