Firewall configuration

Enabling IP/MAC binding

 

 

Figure 15: IP/MAC settings

Content profiles

Use content profiles to apply different protection settings for content traffic controlled by firewall policies. You can use content profiles to:

Configure antivirus protection for HTTP, FTP, POP3, SMTP, and IMAP policies

Configure web filtering for HTTP policies

Configure email filtering for IMAP and POP3 policies

Configure oversized file and email blocking for HTTP, FTP, POP3, SMTP, and IMAP policies

Passing fragmented email for POP3, SMTP, and IMAP policies

Using content profiles you can build up protection configurations that can be easily applied to different types of Firewall policies. This allows you to customize different types and different levels of protection for different firewall policies.

For example, while traffic between internal and external addresses might need strict protection, traffic between trusted internal addresses might need moderate protection. You can configure policies for different traffic services to use the same or different content profiles.

Content profiles can be added to NAT/Route mode and Transparent mode policies.

Default content profiles

Adding a content profile

Adding a content profile to a policy

FortiGate-100 Installation and Configuration Guide

169

Page 169
Image 169
Fortinet 100 user manual Content profiles, 169