Web Filter

New features and changes

Anomaly

The Anomaly menu detects and identifies network traffic that attempts to take advantage of known exploits.

When you are creating a new anomaly, you can now specify the severity, and instead of selecting Logging, you now select Packet Log. The field called Parameters is no longer available.

Protocol Decoder

The Protocol Decoder menu, new for FortiOS 3.0 displays protocol anomalies for logging purposes. You can enable or disable logging for a protocol anomaly, and configure the IPS action in response to detecting an anomaly. If you require to revert back to default settings, you can select the Reset icon.

You can use the CLI to configure session control based on source and destination address. The protocol anomaly list is updated when the firmware image is upgraded.

Web Filter

The Web Filter menu consists of the following menus. It is now located under

Intrusion Protection.

Content Block

URL Filter

FortiGuard-Web Filter

Note: The lists you configured in FortiOS 2.80 may carry forward to FortiOS 3.0 if you upgrade using the web-based manager. Make sure to document these lists for reference to verify after the upgrade is successful. See the Release Notes for FortiOS 3.0MR1 for more information.

Content Block

The Content Block menu has a new tab called Web Content Exempt.

URL Filter

The URL Filter menu allows or blocks access to specific URLs. You can also add patterns or expressions to allow or block URLs. The URL Filter menu has Web URL Block tab and Web Pattern Block tab.

In FortiOS v2.80MR11, URL Filter used to be URL Block. Web Filter is now merged with URL Filter.

FortiGuard-Web Filter

The FortiGuard-Web Filter menu, formerly under Web Filter > Category Block > Configuration, is now its own menu in the Web Filter menu.

The FortiGuard-Web is a managed web filtering solution provided by Fortinet, sorting hundreds of millions of web pages into a wide range of categories for users to allow, block, or monitor.

26

Upgrade Guide for FortiOS v3.0

01-30000-0317-20060424

Page 26
Image 26
Fortinet FortiOS 3.0 manual Web Filter

FortiOS 3.0 specifications

Fortinet FortiOS 3.0 is a robust network operating system designed to provide a comprehensive security solution for enterprise environments. Released as part of Fortinet's commitment to advancing cybersecurity, FortiOS 3.0 integrates several cutting-edge technologies and features to enhance network performance and protection against emerging threats.

One of the main features of FortiOS 3.0 is its advanced threat management capabilities. This includes intrusion prevention systems (IPS), application control, and web filtering, which work in tandem to identify and mitigate risks in real-time. The IPS component utilizes deep packet inspection to analyze traffic patterns and block malicious activity, ensuring that sensitive data remains secure.

Another key characteristic of FortiOS 3.0 is its unified threat management (UTM) approach. By consolidating multiple security functions into a single platform, organizations can simplify their infrastructure, reduce costs, and streamline administration. This consolidation is particularly beneficial for businesses looking to enhance their security posture without overwhelming their IT resources.

FortiOS 3.0 also incorporates advanced VPN capabilities, allowing remote access to secure corporate networks. With support for both IPsec and SSL VPN technologies, users can enjoy secure connections from virtually any location, which is essential in today's increasingly mobile work environment. This flexibility promotes productivity while maintaining stringent security standards.

Additionally, FortiOS 3.0 includes sophisticated logging and reporting features. These provide critical insights into network activity, helping organizations to analyze potential threats and compliance with industry regulations. Customizable alerts and reports empower IT teams to remain vigilant and responsive to any irregularities or breaches in security.

Moreover, FortiOS 3.0 leverages Fortinet's proprietary security processor technology, which accelerates threat processing and reduces latency. This hardware acceleration ensures that even in high-volume traffic situations, security measures do not compromise network speed.

In summary, Fortinet FortiOS 3.0 stands out due to its comprehensive security features, unified threat management capabilities, advanced VPN functionalities, and robust logging and reporting tools. These characteristics make it an ideal solution for organizations seeking to enhance their cybersecurity measures while maintaining operational efficiency. As cyber threats continue to evolve, FortiOS 3.0 equips enterprises with the tools necessary to safeguard their networks effectively.