beautypg.com

Antispam options – Fortinet FortiGate 620B User Manual

Page 36

background image

FortiGate-620B FortiOS 3.0 MR6 Install Guide

36

01-30006-83054-20081015

AntiSpam options

Advanced configuration

• Grayware - These are unsolicited commercial software programs that are

installed on computers, often without the user's consent or knowledge.
Grayware programs are generally considered an annoyance, but these
programs can cause system performance problems or be used for malicious
ends. The FortiGate unit scans for known grayware executable programs in
each enabled category.

• Heuristics - The FortiGate heuristic antivirus engine performs tests on the file

to detect virus-like behavior or known virus indicators. In this way, heuristic
scanning may detect new viruses, but may also produce some false positive
results.

The antivirus elements work in sequence to give you an efficient method of
scanning incoming files. The first three elements have specific functions, the
fourth, the heuristics, is to cover any new previously unknown virus threats. The
four elements work together to offer your network unparalleled antivirus
protection. To ensure that your system is providing the most protection available,
all virus definitions and signatures are up dated regularly through the FortiGuard
antivirus services.

To configure the file patterns that the FortiGate scans, go to AntiVirus > File
Filter
.

To enable grayware blocking, go to AntiVirus > Config > Grayware.

Antivirus settings are turned on in the protection profile. In the protection profile
you can enable antivirus options for specific services and which services will use
the file patterns as a part of the antivirus process.

To configure antivirus protection profile settings, go to Firewall > Protection
Profile
. Select edit for a profile and select the Anti-Virus options.

For details on the antivirus features and settings, see the FortiGate Administration
Guide
or the FortiGate Online Help.

AntiSpam options

The FortiGate unit’s antispam feature detects unsolicited commercial email by
identifying spam email messages and spam transmissions from known or
suspected spam servers.

This feature requires a FortiGuard subscription and a registered FortiGate unit.
When the FortiGate unit receives an email message, it verifies with the FortiGuard
server whether it is a valid email or a spam message. FortiGuard Antispam is one
of the features designed to manage spam. FortiGuard is an antispam system from
Fortinet that includes an IP address black list, a URL black list, and spam filtering
tools. The FortiGuard Center accepts submission of spam email messages as well
as well as reports of false positives.

Depending on how you configure the FortiGate unit, the FortiGate unit will either
tag the message with text so you can easily identify the spam, or delete the
message before it reaches the recipient.

The FortiGate unit also enables you to create your own spam filters using banned
words and black/white lists.