Fortinet FortiOS 3.0 manual IM/P2P new, Banned word, Black/White list

Page 28

IM/P2P (new)

New features and changes

Banned word

The Banned word menu still controls spam by blocking email messages containing specific words or patterns. The Action column on the Banned Word page is now Score, and is reflected when configuring a new banned word.

Score is a numerical weighting applied to banned word. If the score is greater than the spamwordthreshold value set in the protection profile, the page is processed according to whether the spam action command for the mail traffic type (for example smtp3-spamaction) is set to pass or tag in the protection profile. The score for the banned word is counted once even if the word appears multiple times in the web page.

Black/White list

The Black/White list menu provides a way to filter incoming email if enabled in the protection profile. The FortiGate unit uses both an IP address list and email list for filtering purposes.

The FortiGate unit compares the IP address of the message’s sender to the IP address in sequence when doing an IP address list check. If the FortiGate unit finds a match, the action associated with the IP address is taken. If there is no match, then the message passes to the next enabled spam filter.

Email lists work the same way.

IM/P2P (new)

The IM/P2P menu consists of the following menus:

Statistics

User

The IM/P2P menu is new for FortiOS 3.0. Since instant messaging and peer to peer (P2P) networks have grown, FortiOS 3.0 now includes a separate menu for these new technologies. You can control the amount of bandwidth allocated for P2P.

There are extended features with the IM/P2P menu, available in the CLI. You can use config imp2p old-versioncommand to enable older versions of IM protocols. These older versions of IM protocols are able to bypass file blocking because the message types are not recognized. This command provides the option to disable these older IM protocol versions.

The supported protocols are:

MSN 6.0 and above

ICQ 4.0 and above

AIM 5.0 and above

Yahoo 6.0 and above

Note: The FortiGate unit is unable to block Skype uses. Also, if the audio blocking feature is enabled, instant messaging clients are still able to send/receive webcam/video traffic.

28

Upgrade Guide for FortiOS v3.0

01-30000-0317-20060424

Page 27 Page 29
Image 28
Page 27 Page 29
Contents G R a D E G U I D E Trademarks Regulatory complianceContents Backing up your configuration Upgrading to FortiOSIntrusion Protection formerly IPS AntiSpam formerly Spam FilterReverting to FortiOS v2.80MR11 IndexContents Upgrade Guide for FortiOS 01-30000-0317-20060424 About this document IntroductionDocument conventions Fortinet documentation Typographic conventionsFortinet Knowledge Center Customer service and technical supportComments on Fortinet technical documentation Customer service and technical support Upgrade Notes Backing up configuration filesSetup Wizard FortiLog name changeWeb-based manager changes 01-30000-0317-20060424Command Line Interface changes Changes to the web-based managerUSB support OtherUpgrade Notes Other Other New features and changes SystemConfig StatusSessions NetworkAdmin MaintenanceVirtual Domain Shutdown is now located on System Status System OperationStatic RouterDynamic Firewall IPSec CertificatesUser LocalRadius Windows ADAntivirus Intrusion Protection formerly IPSFile Pattern QuarantineWeb Filter AntiSpam formerly Spam Filter Banned word Black/White listBanned word IM/P2P newBlack/White list Log Config Log & ReportStatistics UserLog Access ReportTo upgrade the cluster Snmp MIBs and traps changesUpgrading the HA cluster for FortiOS In-depth Snmp trap changesOptions Backing up your configuration using the web-based manager Backing up your configurationUpgrading to FortiOS Upgrading using the web-based manager Backing up your configuration using the CLIUpgrading your FortiGate unit Upgrading using the CLI To upgrade to FortiOS 3.0 using the CLIVerifying the upgrade Reverting to FortiOS v2.80MR11 Backing up your FortiOS 3.0 configurationBacking up to a FortiUSB key Downgrading to FortiOS v2.80MR11 using web-based manager Verifying the downgradeDowngrading to FortiOS v2.80MR11 using the CLI To downgrade using the CLIRestoring your configuration settings using the CLI Restoring your configurationTo restore configuration settings using the CLI Execute restore allconfig confall 192.168.1.168 ghrffdt123 Restoring your configuration Index 01-30000-0317-20060424

FortiOS 3.0 specifications

Fortinet FortiOS 3.0 is a robust network operating system designed to provide a comprehensive security solution for enterprise environments. Released as part of Fortinet's commitment to advancing cybersecurity, FortiOS 3.0 integrates several cutting-edge technologies and features to enhance network performance and protection against emerging threats.

One of the main features of FortiOS 3.0 is its advanced threat management capabilities. This includes intrusion prevention systems (IPS), application control, and web filtering, which work in tandem to identify and mitigate risks in real-time. The IPS component utilizes deep packet inspection to analyze traffic patterns and block malicious activity, ensuring that sensitive data remains secure.

Another key characteristic of FortiOS 3.0 is its unified threat management (UTM) approach. By consolidating multiple security functions into a single platform, organizations can simplify their infrastructure, reduce costs, and streamline administration. This consolidation is particularly beneficial for businesses looking to enhance their security posture without overwhelming their IT resources.

FortiOS 3.0 also incorporates advanced VPN capabilities, allowing remote access to secure corporate networks. With support for both IPsec and SSL VPN technologies, users can enjoy secure connections from virtually any location, which is essential in today's increasingly mobile work environment. This flexibility promotes productivity while maintaining stringent security standards.

Additionally, FortiOS 3.0 includes sophisticated logging and reporting features. These provide critical insights into network activity, helping organizations to analyze potential threats and compliance with industry regulations. Customizable alerts and reports empower IT teams to remain vigilant and responsive to any irregularities or breaches in security.

Moreover, FortiOS 3.0 leverages Fortinet's proprietary security processor technology, which accelerates threat processing and reduces latency. This hardware acceleration ensures that even in high-volume traffic situations, security measures do not compromise network speed.

In summary, Fortinet FortiOS 3.0 stands out due to its comprehensive security features, unified threat management capabilities, advanced VPN functionalities, and robust logging and reporting tools. These characteristics make it an ideal solution for organizations seeking to enhance their cybersecurity measures while maintaining operational efficiency. As cyber threats continue to evolve, FortiOS 3.0 equips enterprises with the tools necessary to safeguard their networks effectively.
Top Page Image Contents