Antivirus protection | File blocking |
|
|
File blocking
Enable file blocking to remove all files that are a potential threat and to provide the best protection from active computer virus attacks. Blocking files is the only protection from a virus that is so new that antivirus scanning cannot detect it. You would not normally operate the FortiGate unit with blocking enabled. However, it is available for extremely
File blocking deletes all files that match a list of enabled file patterns. The FortiGate unit replaces the file with an alert message that is forwarded to the user. The FortiGate unit also writes a message to the virus log and sends an alert email if it is configured to do so.
Note: If both blocking and scanning are enabled, the FortiGate unit blocks files that match enabled file patterns and does not scan these files for viruses.
By default, when blocking is enabled, the FortiGate unit blocks the following file patterns:
•executable files (*.bat, *.com, and *.exe)
•compressed or archive files (*.gz, *.rar, *.tar, *.tgz, and *.zip)
•dynamic link libraries (*.dll)
•HTML application (*.hta)
•Microsoft Office files (*.doc, *.ppt, *.xl?)
•Microsoft Works files (*.wps)
•Visual Basic files (*.vb?)
•screen saver files (*.scr)
Blocking files in firewall traffic
Use content profiles to apply file blocking to HTTP, FTP, POP3, IMAP, and SMTP traffic controlled by firewall policies.
To block files in firewall traffic
1Select file blocking in a content profile. See “Adding content profiles” on page 167.
2Add this content profile to firewall policies to apply content blocking to the traffic controlled by the firewall policy.
See “Adding content profiles to policies” on page 169.
Adding file patterns to block
To add file patterns to block
1Go to
2Select New.
227 |
