Configuring Web Filtering Options - Fortinet FortiGate FortiGate-50A Administration Manual

Firewall
FortiGate-50A Administration Guide
Configuring antivirus options
Figure 105:Protection profile antivirus options
The following options are available for antivirus through the protection profile. See
"Antivirus" on page 291
Virus Scan
File Block
Quarantine (models with
local disk only)
Pass fragmented emails Enable or disable passing fragmented email for mail protocols
Oversized file/email
Add signature to
outgoing emails

Configuring web filtering options

Figure 106:Protection profile web filtering options
The following options are available for web filtering through the protection profile. See
"Web filter" on page 309
Web Content Block
01-28006-0001-20041105
for more antivirus configuration options.
Enable or disable virus scanning (for viruses and worms) for each
protocol (HTTP, FTP, IMAP, POP3, SMTP). Grayware, if enabled in
Antivirus > Config > Config, is included with the Virus Scan.
Heuristic, if enabled in the CLI, is also included with the Virus Scan.
Enable or disable file pattern blocking for each protocol. You can
block files by name, by extension, or any other pattern, giving you
the flexibility to block files that may contain harmful content.
Enable or disable quarantining for each protocol. You can
quarantine suspect files to view them or submit files to Fortinet for
analysis.
(IMAP, POP3, SMTP). Fragmented email cannot be scanned for
viruses.
Select block or pass for files and email that exceed configured
thresholds for each protocol. The maximum threshold for scanning
in memory is 10% of the FortiGate unit RAM.
Create and enable a signature to append to outgoing email (SMTP
only).
for more web filter configuration options.
Enable or disable web page blocking for HTTP traffic based on the
banned words and patterns in the content block list.
Protection profile
211