Fortinet FortiOS 3.0 manual Web Filter

Page 26

Web Filter

New features and changes

Anomaly

The Anomaly menu detects and identifies network traffic that attempts to take advantage of known exploits.

When you are creating a new anomaly, you can now specify the severity, and instead of selecting Logging, you now select Packet Log. The field called Parameters is no longer available.

Protocol Decoder

The Protocol Decoder menu, new for FortiOS 3.0 displays protocol anomalies for logging purposes. You can enable or disable logging for a protocol anomaly, and configure the IPS action in response to detecting an anomaly. If you require to revert back to default settings, you can select the Reset icon.

You can use the CLI to configure session control based on source and destination address. The protocol anomaly list is updated when the firmware image is upgraded.

Web Filter

The Web Filter menu consists of the following menus. It is now located under

Intrusion Protection.

Content Block

URL Filter

FortiGuard-Web Filter

Note: The lists you configured in FortiOS 2.80 may carry forward to FortiOS 3.0 if you upgrade using the web-based manager. Make sure to document these lists for reference to verify after the upgrade is successful. See the Release Notes for FortiOS 3.0MR1 for more information.

Content Block

The Content Block menu has a new tab called Web Content Exempt.

URL Filter

The URL Filter menu allows or blocks access to specific URLs. You can also add patterns or expressions to allow or block URLs. The URL Filter menu has Web URL Block tab and Web Pattern Block tab.

In FortiOS v2.80MR11, URL Filter used to be URL Block. Web Filter is now merged with URL Filter.

FortiGuard-Web Filter

The FortiGuard-Web Filter menu, formerly under Web Filter > Category Block > Configuration, is now its own menu in the Web Filter menu.

The FortiGuard-Web is a managed web filtering solution provided by Fortinet, sorting hundreds of millions of web pages into a wide range of categories for users to allow, block, or monitor.

26

Upgrade Guide for FortiOS v3.0

01-30000-0317-20060424

Page 25 Page 27
Image 26
Page 25 Page 27
Contents G R a D E G U I D E Trademarks Regulatory complianceContents Intrusion Protection formerly IPS Backing up your configurationUpgrading to FortiOS AntiSpam formerly Spam FilterReverting to FortiOS v2.80MR11 IndexContents Upgrade Guide for FortiOS 01-30000-0317-20060424 Document conventions IntroductionAbout this document Fortinet documentation Typographic conventionsComments on Fortinet technical documentation Customer service and technical supportFortinet Knowledge Center Customer service and technical support Setup Wizard Upgrade NotesBacking up configuration files FortiLog name changeWeb-based manager changes 01-30000-0317-20060424Command Line Interface changes Changes to the web-based managerUSB support OtherUpgrade Notes Other Other New features and changes SystemSessions ConfigStatus NetworkAdmin MaintenanceVirtual Domain Shutdown is now located on System Status System OperationDynamic RouterStatic Firewall IPSec CertificatesRadius UserLocal Windows ADFile Pattern AntivirusIntrusion Protection formerly IPS QuarantineWeb Filter AntiSpam formerly Spam Filter Banned word Black/White listBlack/White list IM/P2P newBanned word Statistics Log ConfigLog & Report UserLog Access ReportUpgrading the HA cluster for FortiOS To upgrade the clusterSnmp MIBs and traps changes In-depth Snmp trap changesOptions Upgrading to FortiOS Backing up your configurationBacking up your configuration using the web-based manager Upgrading your FortiGate unit Backing up your configuration using the CLIUpgrading using the web-based manager Upgrading using the CLI To upgrade to FortiOS 3.0 using the CLIVerifying the upgrade Backing up to a FortiUSB key Backing up your FortiOS 3.0 configurationReverting to FortiOS v2.80MR11 Downgrading to FortiOS v2.80MR11 using web-based manager Verifying the downgradeDowngrading to FortiOS v2.80MR11 using the CLI To downgrade using the CLITo restore configuration settings using the CLI Restoring your configurationRestoring your configuration settings using the CLI Execute restore allconfig confall 192.168.1.168 ghrffdt123 Restoring your configuration Index 01-30000-0317-20060424

FortiOS 3.0 specifications

Fortinet FortiOS 3.0 is a robust network operating system designed to provide a comprehensive security solution for enterprise environments. Released as part of Fortinet's commitment to advancing cybersecurity, FortiOS 3.0 integrates several cutting-edge technologies and features to enhance network performance and protection against emerging threats.

One of the main features of FortiOS 3.0 is its advanced threat management capabilities. This includes intrusion prevention systems (IPS), application control, and web filtering, which work in tandem to identify and mitigate risks in real-time. The IPS component utilizes deep packet inspection to analyze traffic patterns and block malicious activity, ensuring that sensitive data remains secure.

Another key characteristic of FortiOS 3.0 is its unified threat management (UTM) approach. By consolidating multiple security functions into a single platform, organizations can simplify their infrastructure, reduce costs, and streamline administration. This consolidation is particularly beneficial for businesses looking to enhance their security posture without overwhelming their IT resources.

FortiOS 3.0 also incorporates advanced VPN capabilities, allowing remote access to secure corporate networks. With support for both IPsec and SSL VPN technologies, users can enjoy secure connections from virtually any location, which is essential in today's increasingly mobile work environment. This flexibility promotes productivity while maintaining stringent security standards.

Additionally, FortiOS 3.0 includes sophisticated logging and reporting features. These provide critical insights into network activity, helping organizations to analyze potential threats and compliance with industry regulations. Customizable alerts and reports empower IT teams to remain vigilant and responsive to any irregularities or breaches in security.

Moreover, FortiOS 3.0 leverages Fortinet's proprietary security processor technology, which accelerates threat processing and reduces latency. This hardware acceleration ensures that even in high-volume traffic situations, security measures do not compromise network speed.

In summary, Fortinet FortiOS 3.0 stands out due to its comprehensive security features, unified threat management capabilities, advanced VPN functionalities, and robust logging and reporting tools. These characteristics make it an ideal solution for organizations seeking to enhance their cybersecurity measures while maintaining operational efficiency. As cyber threats continue to evolve, FortiOS 3.0 equips enterprises with the tools necessary to safeguard their networks effectively.
Top Page Image Contents