Manuals / Fortinet / Computer Equipment / Network Card

Fortinet FortiOS 3.0 manual Web Filter, Anomaly, Protocol Decoder, Content Block, URL Filter

Models: FortiOS 3.0

1 46

Download 46 pages 41.24 Kb

Page 26

Anomaly

Web Filter

New features and changes

Anomaly

The Anomaly menu detects and identifies network traffic that attempts to take advantage of known exploits.

When you are creating a new anomaly, you can now specify the severity, and instead of selecting Logging, you now select Packet Log. The field called Parameters is no longer available.

Protocol Decoder

The Protocol Decoder menu, new for FortiOS 3.0 displays protocol anomalies for logging purposes. You can enable or disable logging for a protocol anomaly, and configure the IPS action in response to detecting an anomaly. If you require to revert back to default settings, you can select the Reset icon.

You can use the CLI to configure session control based on source and destination address. The protocol anomaly list is updated when the firmware image is upgraded.

Web Filter

The Web Filter menu consists of the following menus. It is now located under

Intrusion Protection.

•Content Block

•URL Filter

•FortiGuard-Web Filter

Note: The lists you configured in FortiOS 2.80 may carry forward to FortiOS 3.0 if you upgrade using the web-based manager. Make sure to document these lists for reference to verify after the upgrade is successful. See the Release Notes for FortiOS 3.0MR1 for more information.

Content Block

The Content Block menu has a new tab called Web Content Exempt.

URL Filter

The URL Filter menu allows or blocks access to specific URLs. You can also add patterns or expressions to allow or block URLs. The URL Filter menu has Web URL Block tab and Web Pattern Block tab.

In FortiOS v2.80MR11, URL Filter used to be URL Block. Web Filter is now merged with URL Filter.

FortiGuard-Web Filter

The FortiGuard-Web Filter menu, formerly under Web Filter > Category Block > Configuration, is now its own menu in the Web Filter menu.

The FortiGuard-Web is a managed web filtering solution provided by Fortinet, sorting hundreds of millions of web pages into a wide range of categories for users to allow, block, or monitor.

26	Upgrade Guide for FortiOS v3.0
	01-30000-0317-20060424

Image 26

Fortinet FortiOS 3.0 manual Anomaly, Protocol Decoder, Content Block, URL Filter, FortiGuard-Web Filter

Contents

Upgrade Guide for FortiOS U P G R A D E G U I D ERegulatory compliance Upgrade Guide for FortiOS 3.0 24 AprilTrademarks New features and changes ContentsUpgrade Notes IntroductionIntrusion Protection formerly IPS Backing up your configurationUpgrading to FortiOS AntiSpam formerly Spam FilterRestoring your configuration Backing up your FortiOS 3.0 configurationDowngrading to FortiOS v2.80MR11 using web-based manager Reverting to FortiOS v2.80MR1101-30000-0317-20060424 ContentsUpgrade Guide for FortiOS Document conventions IntroductionAbout this document Fortinet documentation FortiGate Installation GuideFortiGate Administration Guide Typographic conventionsComments on Fortinet technical documentation Customer service and technical supportFortinet Knowledge Center FortiGate High Availability User Guide01-30000-0317-20060424 Customer service and technical supportUpgrade Guide for FortiOS IntroductionSetup Wizard Upgrade NotesBacking up configuration files Backing up configuration files Setup Wizard FortiLog name changeFigure 2 LCD main menu setting for Transparent mode Web-based manager changesFigure 1 LCD main menu settings for NAT/Route mode Upgrade Guide for FortiOSAdministration Guide Command Line Interface changesSee the “New features and changes” on page 17 for more information Changes to the web-based managerUSB support OtherSee the Release Notes FortiOS 3.0MR1 for more information Other Upgrade Guide for FortiOSUpgrade Notes 01-30000-0317-20060424Status Network Config Admin Maintenance New features and changesFortiGate Administration Guide FortiGate CLI Reference SystemSessions ConfigStatus NetworkFigure 4 Backup and Restore page AdminMaintenance Virtual Domain Shutdown is now located on System Status System OperationDynamic RouterStatic Static Dynamic MonitorFirewall ServicePolicy Address Service Virtual IP Protection Profiles MonitorIPSec SSL Certificates IPSecCertificates Radius UserLocal LDAPIntrusion Protection formerly IPS File Pattern Quarantine ConfigAntivirus File PatternWeb Filter Content BlockContent Block URL Filter FortiGuard-Web Filter AnomalyAntiSpam formerly Spam Filter Banned word Black/White listBlack/White list IM/P2P newBanned word Statistics UserLog & Report Log ConfigLog Config Log Access Report StatisticsLog Access ReportUpgrading the HA cluster for FortiOS To upgrade the clusterSNMP MIBs and traps changes In-depth SNMP trap changesSNMP MIBs and traps changes AdministratorUpgrade Guide for FortiOS OptionsBacking up your configuration Upgrading your FortiGate unit Backing up your configurationBacking up your configuration using the web-based manager Verifying the upgradeTo backup your configuration file using the CLI Backing up your configuration using the CLIUpgrading using the web-based manager To upgrade to FortiOS 3.0 using the web-based managerUpgrading using the CLI To upgrade to FortiOS 3.0 using the CLIVerifying the upgrade Downgrading to FortiOS v2.80MR11 using web-based manager Backing up your FortiOS 3.0 configurationBacking up your FortiOS 3.0 configuration Downgrading to FortiOS v2.80MR11 using the CLIVerifying the downgrade Downgrading to FortiOS v2.80MR11 using web-based managerTo downgrade using the web-based manager 1 Go to System Status Firmware VersionDowngrading to FortiOS v2.80MR11 using the CLI To downgrade using the CLIRestoring your configuration settings using the CLI Restoring your configurationRestoring your configuration settings using the web-based manager To restore configuration settings using the web-based managerAll done. Rebooting execute restore allconfig namestr tftpipv4 passwrdexecute restore allconfig confall 192.168.1.168 ghrffdt123 Do you want to continue? y/n01-30000-0317-20060424 Restoring your configurationUpdate Guide for FortiOS Reverting to FortiOS v2.80MR11Index 01-30000-0317-20060424 Upgrade Guide for FortiOSIndex