Fortinet FortiOS 3.0 manual Antivirus, Intrusion Protection formerly IPS, File Pattern, Quarantine

Page 25

 

 

New features and changes

Antivirus

Antivirus

The Antivirus menu is now located below the User menu. It consists of the following menus:

File Pattern

Quarantine

Config

File Pattern

The File Pattern menu has changed. The columns on the File Pattern page are now Pattern, Action and Enable. When you select Create New, you can select the pattern, type of action to take (either Block or Allow) and whether the new file pattern should be enabled or disabled.

Quarantine

The Quarantine menu is new to the Antivirus menu. It contains two tabs, Quarantined Files and Config. The Quarantined Files tab displays the information of each file, displaying why the file was blocked. You can also filter the files by file name, date, service, status, and status description.

The Config tab displays a list of current viruses the FortiGate unit has blocked and you can configure file and email size limits, including grayware blocking.

Note: You need to be connected to the FortiAnalyzer unit to configure file and email size limits, including grayware blocking.

Config

The Config menu includes the Virus List and Grayware tabs. The Config tab is now located in the CLI under Antivirus Service. See the FortiGate CLI Reference for more information.

Intrusion Protection (formerly IPS)

The Intrusion Protection menu consists of the following menus:

Signature

Anomaly

Note: Make sure to document all FortiOS 2.80 IPS group settings before upgrading to FortiOS 3.0, since certain IPS group settings are not carried forward and must be configured manually. See the Release Notes FortiOS 3.0MR1 for more information.

Signature

The Signature menu is unchanged. However, you can now view the severity level of pre-defined signatures and custom signatures. Also, you can reset the pre- defined signatures to their default settings if you changed them.

When creating new custom signatures on the Custom page, you can specify the severity level for the custom signature.

Upgrade Guide for FortiOS v3.0

25

01-30000-0317-20060424

Page 24 Page 26
Image 25
Page 24 Page 26
Contents G R a D E G U I D E Regulatory compliance TrademarksContents Upgrading to FortiOS Backing up your configurationIntrusion Protection formerly IPS AntiSpam formerly Spam FilterIndex Reverting to FortiOS v2.80MR11Contents Upgrade Guide for FortiOS 01-30000-0317-20060424 About this document IntroductionDocument conventions Typographic conventions Fortinet documentationFortinet Knowledge Center Customer service and technical supportComments on Fortinet technical documentation Customer service and technical support Backing up configuration files Upgrade NotesSetup Wizard FortiLog name change01-30000-0317-20060424 Web-based manager changesChanges to the web-based manager Command Line Interface changesOther USB supportUpgrade Notes Other Other System New features and changesStatus ConfigSessions NetworkMaintenance AdminShutdown is now located on System Status System Operation Virtual DomainStatic RouterDynamic Firewall Certificates IPSecLocal UserRadius Windows ADIntrusion Protection formerly IPS AntivirusFile Pattern QuarantineWeb Filter Banned word Black/White list AntiSpam formerly Spam FilterBanned word IM/P2P newBlack/White list Log & Report Log ConfigStatistics UserReport Log AccessSnmp MIBs and traps changes To upgrade the clusterUpgrading the HA cluster for FortiOS In-depth Snmp trap changesOptions Backing up your configuration using the web-based manager Backing up your configurationUpgrading to FortiOS Upgrading using the web-based manager Backing up your configuration using the CLIUpgrading your FortiGate unit To upgrade to FortiOS 3.0 using the CLI Upgrading using the CLIVerifying the upgrade Reverting to FortiOS v2.80MR11 Backing up your FortiOS 3.0 configurationBacking up to a FortiUSB key Verifying the downgrade Downgrading to FortiOS v2.80MR11 using web-based managerTo downgrade using the CLI Downgrading to FortiOS v2.80MR11 using the CLIRestoring your configuration settings using the CLI Restoring your configurationTo restore configuration settings using the CLI Execute restore allconfig confall 192.168.1.168 ghrffdt123 Restoring your configuration Index 01-30000-0317-20060424

FortiOS 3.0 specifications

Fortinet FortiOS 3.0 is a robust network operating system designed to provide a comprehensive security solution for enterprise environments. Released as part of Fortinet's commitment to advancing cybersecurity, FortiOS 3.0 integrates several cutting-edge technologies and features to enhance network performance and protection against emerging threats.

One of the main features of FortiOS 3.0 is its advanced threat management capabilities. This includes intrusion prevention systems (IPS), application control, and web filtering, which work in tandem to identify and mitigate risks in real-time. The IPS component utilizes deep packet inspection to analyze traffic patterns and block malicious activity, ensuring that sensitive data remains secure.

Another key characteristic of FortiOS 3.0 is its unified threat management (UTM) approach. By consolidating multiple security functions into a single platform, organizations can simplify their infrastructure, reduce costs, and streamline administration. This consolidation is particularly beneficial for businesses looking to enhance their security posture without overwhelming their IT resources.

FortiOS 3.0 also incorporates advanced VPN capabilities, allowing remote access to secure corporate networks. With support for both IPsec and SSL VPN technologies, users can enjoy secure connections from virtually any location, which is essential in today's increasingly mobile work environment. This flexibility promotes productivity while maintaining stringent security standards.

Additionally, FortiOS 3.0 includes sophisticated logging and reporting features. These provide critical insights into network activity, helping organizations to analyze potential threats and compliance with industry regulations. Customizable alerts and reports empower IT teams to remain vigilant and responsive to any irregularities or breaches in security.

Moreover, FortiOS 3.0 leverages Fortinet's proprietary security processor technology, which accelerates threat processing and reduces latency. This hardware acceleration ensures that even in high-volume traffic situations, security measures do not compromise network speed.

In summary, Fortinet FortiOS 3.0 stands out due to its comprehensive security features, unified threat management capabilities, advanced VPN functionalities, and robust logging and reporting tools. These characteristics make it an ideal solution for organizations seeking to enhance their cybersecurity measures while maintaining operational efficiency. As cyber threats continue to evolve, FortiOS 3.0 equips enterprises with the tools necessary to safeguard their networks effectively.
Top Page Image Contents