
Antivirus scanning | Antivirus protection |
|
|
Antivirus scanning
Virus scanning intercepts most files (including files compressed with up to 12 layers of compression using zip, rar, gzip, tar, upx, and OLE) in the content streams for which you enable antivirus protection. Each file is tested to determine the file type and the most effective method of scanning the file for viruses. For example, binary files are scanned using binary virus scanning and Microsoft Office files containing macros are scanned for macro viruses.
FortiGate virus scanning does not scan the following file types:
•cdimage
•floppy image
•.ace
•.bzip2
•.Tar+Gzip+Bzip2
If a file is found to contain a virus, the FortiGate unit removes the file from the content stream and replaces it with a replacement message.
To scan FortiGate firewall traffic for viruses
1Select antivirus scanning in a content profile.
For information about content profiles, see “Adding content profiles” on page 167.
2Add this content profile to firewall policies to apply virus scanning to the traffic controlled by the firewall policy.
See “Adding content profiles to policies” on page 169.
Figure 34: Example content profile for virus scanning
226 | Fortinet Inc. |