ProtectionProfiles
2 Fortinet Technologies Protection Profiles Protection profiles control t the type of traffic protected t HTTP t FTP t IMAP t POP3 t SMTP t the type of antivirus and intrusion protection enabled t the treatment of fragmented and oversized files or
3 Fortinet Technologies Default Protection Profiles Your FortiGate unit comes with four default protection profiles: t Strict t Scan t Web t Unfiltered
4 Fortinet Technologies Protection Profile Configuration Configure the following for each protection profile: t antivirus t web filtering t web content filtering t spam filtering t IPS t logging
5 Fortinet Technologies Protection Profile - Antivirus Enable t Virus Scan t File Block t Action on oversized files and t Firewall > Protection Profile > Create New
6 Fortinet Technologies Protection Profile – Web Filtering Enable t Web Content Block t Web URL Block t Web Exempt List t Web Script Filter
7 Fortinet Technologies Protection Profile – FortiGuard Category Filtering
8 Fortinet Technologies FortiGuard Category Filtering t Enable category blocking t Block unrated web sites t Allow web sites when a rating error occurs t Set Action for each category
9 Fortinet Technologies Protection Profile – Spam Filtering
10 Fortinet Technologies Protection Profile – Spam Filtering (1) Enable checks for t IP addresses t Listing on RBL and ORDBL databases t Reverse DNS lookup (SMTP only) t addresses t Return DNS lookup t MIME headers t Banned words
11 Fortinet Technologies Protection Profile – Spam Filtering (2) t Set Spam Action t Discard (SMTP only) t Tagged t Pass t Append message to subject line or MIME header (IMAP and POP3 only) t Enable logging
12 Fortinet Technologies Reverse DNS Lookup (SMTP only) t Performed when a HELO command is received from the SMTP server t Checks the domain name against the actual IP address of the peer
13 Fortinet Technologies Protection Profile - IPS Enable t IPS Signatures t IPS Anomalies
14 Fortinet Technologies Protection Profile – Content Log Log content meta-information for t HTTP t FTP t IMAP t POP3 t SMTP