Antivirus scanning

Antivirus protection

 

 

Antivirus scanning

Virus scanning intercepts most files (including files compressed with up to 12 layers of compression using zip, rar, gzip, tar, upx, and OLE) in the content streams for which you enable antivirus protection. Each file is tested to determine the file type and the most effective method of scanning the file for viruses. For example, binary files are scanned using binary virus scanning and Microsoft Office files containing macros are scanned for macro viruses.

FortiGate virus scanning does not scan the following file types:

cdimage

floppy image

.ace

.bzip2

.Tar+Gzip+Bzip2

If a file is found to contain a virus, the FortiGate unit removes the file from the content stream and replaces it with a replacement message.

To scan FortiGate firewall traffic for viruses

1Select antivirus scanning in a content profile.

For information about content profiles, see “Adding content profiles” on page 167.

2Add this content profile to firewall policies to apply virus scanning to the traffic controlled by the firewall policy.

See “Adding content profiles to policies” on page 169.

Figure 34: Example content profile for virus scanning

226

Fortinet Inc.

Page 226
Image 226
Fortinet 50A user manual Antivirus scanning, 226, To scan FortiGate firewall traffic for viruses