Factory default content profiles

Getting started	Factory default FortiGate configuration settings

You can use content profiles to apply different protection settings for content traffic that is controlled by firewall policies. You can use content profiles for:

•Antivirus protection of HTTP, FTP, IMAP, POP3, and SMTP network traffic

•Web content filtering for HTTP network traffic

•Email filtering for IMAP and POP3 network traffic

•Oversized file and email blocking for HTTP, FTP, POP3, SMTP, and IMAP network traffic

•Passing fragmented emails in IMAP, POP3, and SMTP email traffic

Using content profiles, you can build protection configurations that can be applied to different types of firewall policies. This allows you to customize types and levels of protection for different firewall policies.

For example, while traffic between internal and external addresses might need strict protection, traffic between trusted internal addresses might need moderate protection. You can configure policies for different traffic services to use the same or different content profiles.

Content profiles can be added to NAT/Route mode and Transparent mode policies.

Strict content profile

Use the strict content profile to apply maximum content protection to HTTP, FTP, IMAP, POP3, and SMTP content traffic. You do not need to use the strict content profile under normal circumstances, but it is available if you have extreme problems with viruses and require maximum content screening protection.

Table 6: Strict content profile

Options	HTTP	FTP	IMAP	POP3	SMTP

Antivirus Scan	;	;	;	;	;

File Block	;	;	;	;	;

Web URL Block	;

Web Content Block	;

Web Script Filter	;

Web Exempt List	;

Email Block List			;	;

Email Exempt List			;	;

Email Content Block			;	;

Oversized File/Email Block	block	block	block	block	block

Pass Fragmented Emails

FortiGate-50A Installation and Configuration Guide

Fortinet 50A user manual Factory default content profiles, Strict content profile

Models: 50A