Benutzerhandbuch für Fortinet fortigate-100a

Fortinet

Merkblatt (English)Installationsanweisungen (English)Betriebsanweisung (English)Benutzerhandbuch (English)

Installationsanweisungen

Inhaltsverzeichnis

Installationsanweisungen

Größe:

1,46 MB
Seiten:

54
Language:

English

Handbuch öffnen

Betriebsanweisung

Inhaltsverzeichnis

Table of Contents
3
Introduction
13
- About FortiGate Antivirus Firewalls
  13
  - Antivirus protection
    14
  - Web content filtering
    14
  - Spam filtering
    15
  - Firewall
    15
    - NAT/Route mode
      16
    - Transparent mode
      16
  - VLANs and virtual domains
    16
  - Intrusion Prevention System (IPS)
    17
  - VPN
    17
  - High availability
    18
  - Secure installation, configuration, and management
    18
    - Web-based manager
      18
    - Command line interface
      18
    - Logging and reporting
      19
- Document conventions
  19
- FortiGate documentation
  21
  - Comments on Fortinet technical documentation
    21
- Related documentation
  21
- Customer service and technical support
  23
System status
25
- Console access
  25
- Status
  26
  - Viewing system status
    26
    - System status
      26
    - Unit Information
      27
    - Recent Virus Detections
      27
    - Interface Status
      27
    - System Resources
      27
    - History
      28
    - Recent Intrusion Detections
      28
  - Changing unit information
    29
- Session list
  31
- Changing the FortiGate firmware
  32
System network
47
- Interface
  47
  - Interface settings
    48
    - Name
      49
    - Interface
      49
    - VLAN ID
      49
    - Virtual Domain
      50
    - Addressing mode
      50
    - Manual
      50
    - DHCP
      50
    - PPPoE
      51
    - DDNS
      52
    - Ping server
      52
    - Administrative access
      52
    - MTU
      53
    - Log
      53
  - Configuring interfaces
    53
- Zone
  57
  - Zone settings
    58
- Management
  59
- DNS
  60
- Routing table (Transparent Mode)
  61
  - Routing table list
    61
  - Transparent mode route settings
    62
- VLAN overview
  63
  - FortiGate units and VLANs
    64
- VLANs in NAT/Route mode
  64
- VLANs in Transparent mode
  66
- FortiGate IPv6 support
  71
System DHCP
73
- Service
  73
  - DHCP service settings
    74
- Server
  75
  - DHCP server settings
    76
- Exclude range
  77
  - DHCP exclude range settings
    78
- IP/MAC binding
  78
  - DHCP IP/MAC binding settings
    79
- Dynamic IP
  79
System config
81
- System time
  81
- Options
  82
- HA
  84
  - HA configuration
    85
    - Standalone Mode
      85
    - High Availability
      86
    - Cluster Members
      86
    - Mode
      86
    - Group ID
      86
    - Unit Priority
      87
    - Override Master
      87
    - Password
      88
    - Schedule
      88
    - Priorities of Heartbeat Device
      88
    - Heartbeat device IP addresses
      89
    - Monitor priorities
      90
  - Configuring an HA cluster
    91
  - Managing an HA cluster
    94
- SNMP
  97
  - Configuring SNMP
    98
  - SNMP community
    99
  - FortiGate MIBs
    101
  - FortiGate traps
    102
  - Fortinet MIB fields
    103
- Replacement messages
  106
  - Replacement messages list
    106
  - Changing replacement messages
    107
- FortiManager
  108
System administration
109
- Administrators
  109
  - Administrators list
    110
  - Administrators options
    110
    - Using trusted hosts
      111
- Access profiles
  111
  - Access profile list
    112
  - Access profile options
    112
System maintenance
115
- Backup and restore
  115
  - Backing up and Restoring
    116
- Update center
  118
  - Updating antivirus and attack definitions
    120
  - Enabling push updates
    123
    - Push updates when FortiGate IP addresses change
      123
    - Enabling push updates through a NAT device
      124
- Support
  125
  - Sending a bug report
    126
  - Registering a FortiGate unit
    127
- Shutdown
  129
System virtual domain
131
- Virtual domain properties
  132
- Virtual domains
  134
- Configuring virtual domains
  136
Router
141
- Static
  141
  - Static route list
    143
  - Static route options
    144
- Policy
  145
  - Policy route list
    145
  - Policy route options
    146
- RIP
  146
  - General
    147
  - Networks list
    148
  - Networks options
    149
  - Interface list
    149
  - Interface options
    150
  - Distribute list
    151
  - Distribute list options
    152
  - Offset list
    153
  - Offset list options
    153
- Router objects
  154
  - Access list
    154
  - New access list
    154
  - New access list entry
    155
  - Prefix list
    155
  - New Prefix list
    156
  - New prefix list entry
    157
  - Route-map list
    157
  - New Route-map
    158
  - Route-map list entry
    159
  - Key chain list
    160
  - New key chain
    160
  - Key chain list entry
    161
- Monitor
  162
  - Routing monitor list
    162
- CLI configuration
  163
  - get router info ospf
    163
    - Command syntax
      163
    - Examples
      163
  - get router info protocols
    163
    - Command syntax
      163
  - get router info rip
    164
    - Command syntax
      164
    - Examples
      164
  - config router ospf
    164
    - Command syntax pattern
      164
    - Example
      166
    - config area
      167
    - config area command syntax pattern
      167
    - Example
      169
    - config filter-list
      170
    - config filter-list command syntax pattern
      170
    - Example
      171
    - config range
      171
    - config range command syntax pattern
      171
    - Example
      172
    - config virtual-link
      173
    - config virtual link command syntax pattern
      173
    - Example
      175
    - config distribute-list
      175
    - config distribute-list command syntax pattern
      176
    - Example
      176
    - config neighbor
      177
    - config neighbor command syntax pattern
      177
    - Example
      178
    - config network
      179
    - config network command syntax pattern
      179
    - Example
      179
    - config ospf-interface
      180
    - config ospf-interface command syntax pattern
      180
    - Example
      184
    - config redistribute
      184
    - config redistribute command syntax pattern
      185
    - Example
      185
    - config summary-address
      185
    - config summary-address command syntax pattern
      186
    - Example
      186
  - config router static6
    187
    - Command syntax pattern
      187
    - Example
      188
Firewall
189
- Policy
  190
  - How policy matching works
    190
  - Policy list
    190
  - Policy options
    191
  - Advanced policy options
    194
    - Authentication
      194
    - Traffic Shaping
      195
    - Differentiated Services
      195
    - Comments
      196
  - Configuring firewall policies
    196
  - Policy CLI configuration
    197
    - Command syntax pattern
      197
- Address
  198
  - Address list
    199
  - Address options
    199
  - Configuring addresses
    200
  - Address group list
    201
  - Address group options
    201
  - Configuring address groups
    202
- Service
  202
  - Predefined service list
    203
  - Custom service list
    206
  - Custom service options
    206
  - Configuring custom services
    208
  - Service group list
    209
  - Service group options
    209
  - Configuring service groups
    210
- Schedule
  210
  - One-time schedule list
    211
  - One-time schedule options
    211
  - Configuring one-time schedules
    212
  - Recurring schedule list
    212
  - Recurring schedule options
    213
  - Configuring recurring schedules
    213
- Virtual IP
  214
  - Virtual IP list
    215
  - Virtual IP options
    215
  - Configuring virtual IPs
    216
- IP pool
  218
  - IP pool list
    219
  - IP pool options
    219
  - Configuring IP pools
    220
  - IP Pools for firewall policies that use fixed ports
    220
  - IP pools and dynamic NAT
    221
- Protection profile
  221
  - Protection profile list
    222
  - Default protection profiles
    222
  - Protection profile options
    222
  - Configuring protection profiles
    227
  - CLI configuration
    228
    - profile
      228
    - Command syntax pattern
      228
Users and authentication
233
- Setting authentication timeout
  234
- Local
  234
  - Local user list
    234
  - Local user options
    234
- RADIUS
  235
  - RADIUS server list
    235
  - RADIUS server options
    236
- LDAP
  236
  - LDAP server list
    237
  - LDAP server options
    237
- User group
  239
  - User group list
    239
  - User group options
    240
- CLI configuration
  241
  - peer
    241
    - Command syntax pattern
      241
    - Example
      241
  - peergrp
    242
    - Command syntax pattern
      242
    - Example
      242
VPN
245
- Phase 1
  246
  - Phase 1 list
    246
  - Phase 1 basic settings
    247
  - Phase 1 advanced options
    248
  - Configuring XAuth
    249
- Phase 2
  250
  - Phase 2 list
    250
  - Phase 2 basic settings
    251
  - Phase 2 advanced options
    252
- Manual key
  253
  - Manual key list
    254
  - Manual key options
    254
- Concentrator
  255
  - Concentrator list
    255
  - Concentrator options
    256
- Ping Generator
  256
  - Ping generator options
    257
- Monitor
  257
  - Dialup monitor
    258
  - Static IP and dynamic DNS monitor
    258
- PPTP
  259
  - Setting up a PPTP-based VPN
    259
  - Enabling PPTP and specifying a PPTP range
    260
  - Configuring a Windows 2000 client for PPTP
    261
  - Configuring a Windows XP client for PPTP
    261
  - PPTP passthrough
    262
- L2TP
  263
  - Setting up a L2TP-based VPN
    264
  - Enabling L2TP and specifying an L2TP range
    264
  - Configuring a Windows 2000 client for L2TP
    265
  - Configuring a Windows XP client for L2TP
    266
- Certificates
  268
  - Viewing the certificate list
    269
  - Generating a certificate request
    269
  - Installing a signed certificate
    271
  - Enabling VPN access for specific certificate holders
    272
- CLI configuration
  273
  - ipsec phase1
    273
    - Command syntax pattern
      273
    - Example
      275
  - ipsec phase2
    275
    - Command syntax pattern
      275
    - Example
      276
  - ipsec vip
    276
    - Command syntax pattern
      276
    - Example
      277
- Authenticating peers with preshared keys
  278
- Gateway-to-gateway VPN
  278
- Dialup VPN
  279
- Dynamic DNS VPN
  279
- Manual key IPSec VPN
  280
- Adding firewall policies for IPSec VPN tunnels
  280
  - Setting the encryption policy direction
    280
  - Setting the source address for encrypted traffic
    280
  - Setting the destination address for encrypted traffic
    281
  - Adding an IPSec firewall encryption policy
    281
- Internet browsing through a VPN tunnel
  281
  - Configuring Internet browsing through a VPN tunnel
    282
- IPSec VPN in Transparent mode
  283
  - Special rules
    283
- Hub and spoke VPNs
  284
  - Configuring the hub
    284
    - Adding a VPN concentrator
      285
  - Configuring spokes
    286
- Redundant IPSec VPNs
  287
  - Configuring redundant IPSec VPNs
    287
- Configuring IPSec virtual IP addresses
  288
- Troubleshooting
  290
IPS
291
- Protection profile configuration
  291
- IPS updates and information
  291
- Signature
  292
  - Predefined
    292
  - Custom
    296
- Anomaly
  298
  - Anomaly list
    298
  - Configuring an anomaly
    299
  - Anomaly CLI configuration
    301
    - (config ips anomaly) config limit
      301
    - Command syntax pattern
      301
    - Example
      301
- Configuring IPS logging and alert email
  302
- Default fail open setting
  302
Antivirus
303
- Protection profile configuration
  304
- Order of antivirus operations
  304
- Virus list updates and information
  304
- File block
  304
  - File block list
    305
  - Configuring the file block list
    306
- Quarantine
  306
  - Quarantined files list
    306
  - Quarantined files list options
    307
  - AutoSubmit list
    308
  - AutoSubmit list options
    308
  - Configuring the AutoSubmit list
    308
  - Config
    309
- Config
  310
  - Virus list
    310
  - Config
    310
  - Grayware
    311
  - Grayware options
    311
- CLI configuration
  312
  - heuristic
    312
    - Command syntax pattern
      313
    - Example
      313
  - quarantine
    313
    - Command syntax pattern
      314
    - antivirus quarantine command keywords and variables
      314
  - service http
    314
    - Command syntax pattern
      314
    - Example
      315
  - service ftp
    315
    - Command syntax pattern
      315
    - Example
      316
  - service pop3
    316
    - Command syntax pattern
      316
    - Example
      317
  - service imap
    317
    - Command syntax pattern
      317
    - Example
      318
  - service smtp
    318
    - Command syntax pattern
      318
    - Example
      319
Web filter
321
- Protection profile configuration
  322
- Order of web filter operations
  322
- Content block
  322
- URL block
  324
  - Web URL block list
    325
  - Web URL block options
    325
  - Configuring the web URL block list
    325
  - Web pattern block list
    326
  - Web pattern block options
    327
  - Configuring web pattern block
    327
- URL exempt
  327
  - URL exempt list
    328
  - URL exempt list options
    328
  - Configuring URL exempt
    328
- Category block
  329
  - FortiGuard managed web filtering service
    329
    - FortiGuard categories and ratings
      329
    - FortiGuard Service Points
      329
    - FortiGuard licensing
      330
    - FortiGuard configuration
      330
  - Category block configuration options
    330
  - Configuring web category block
    331
  - Category block reports
    331
  - Category block reports options
    332
  - Generating a category block report
    332
  - Category block CLI configuration
    332
    - Command syntax pattern
      333
    - Example
      333
- Script filter
  333
  - Web script filter options
    334
Spam filter
335
- Protection profile configuration
  336
- Order of spam filter operations
  337
- FortiShield IP address black list and spam filter
  337
- IP address
  338
  - IP address list
    338
  - IP address options
    338
  - Configuring the IP address list
    338
- RBL & ORDBL
  339
  - RBL & ORDBL list
    340
  - RBL & ORDBL options
    340
  - Configuring the RBL & ORDBL list
    340
- Email address
  341
  - Email address list
    341
  - Email address options
    341
  - Configuring the email address list
    341
- MIME headers
  342
  - MIME headers list
    343
  - MIME headers options
    343
  - Configuring the MIME headers list
    343
- Banned word
  344
  - Banned word list
    344
  - Banned word options
    345
  - Configuring the banned word list
    346
- Using Perl regular expressions
  346
  - Regular expression vs. wildcard match pattern
    346
  - Word boundary
    347
  - Case sensitivity
    347
  - Examples
    348
Log & Report
349
- Log config
  350
  - Log Setting options
    350
    - FortiLog settings
      351
    - Disk settings
      352
    - Memory settings
      353
    - Syslog settings
      353
    - WebTrends settings
      353
  - Alert E-mail options
    354
  - Log filter options
    355
    - Traffic log
      356
    - Event log
      356
    - Anti-virus log
      357
    - Web filter log
      357
    - Attack log
      357
    - Spam filter log
      358
  - Configuring log filters
    358
  - Enabling traffic logging
    358
- Log access
  359
  - Viewing log messages
    359
    - Choosing columns
      360
  - Searching log messages
    361
- CLI configuration
  362
  - fortilog setting
    362
    - Command syntax pattern
      362
    - Example
      363
  - syslogd setting
    363
    - Command syntax pattern
      363
    - Example
      365
FortiGuard categories
367
FortiGate maximum values
373
Glossary
377
Index
381

Betriebsanweisung

Größe:

4,74 MB
Seiten:

388
Language:

English

Handbuch öffnen

Benutzerhandbuch

Inhaltsverzeichnis

Table of Contents
3
Introduction
13
- About FortiGate Antivirus Firewalls
  13
  - Antivirus protection
    14
  - Web content filtering
    14
  - Spam filtering
    15
  - Firewall
    15
    - NAT/Route mode
      16
    - Transparent mode
      16
  - VLANs and virtual domains
    16
  - Intrusion Prevention System (IPS)
    17
  - VPN
    17
  - High availability
    18
  - Secure installation, configuration, and management
    18
    - Web-based manager
      18
    - Command line interface
      18
    - Logging and reporting
      19
- Document conventions
  19
- FortiGate documentation
  21
  - Fortinet Knowledge Center
    21
  - Comments on Fortinet technical documentation
    21
- Related documentation
  22
- Customer service and technical support
  23
System status
25
- Console access
  25
- Status
  26
  - Viewing system status
    26
    - System status
      27
    - Unit Information
      27
    - Recent Virus Detections
      27
    - Content Summary
      27
    - Interface Status
      28
    - System Resources
      28
    - History
      29
    - Recent Intrusion Detections
      29
  - Changing unit information
    29
- Session list
  32
- Changing the FortiGate firmware
  33
System network
47
- Interface
  47
  - Interface settings
    48
    - Name
      49
    - Interface
      49
    - VLAN ID
      49
    - Virtual Domain
      50
    - Addressing mode
      50
    - Manual
      50
    - DHCP
      50
    - PPPoE
      51
    - DDNS
      52
    - Ping server
      52
    - Administrative access
      52
    - MTU
      53
    - Log
      53
  - Configuring interfaces
    53
- Zone
  58
  - Zone settings
    58
- Management
  59
- DNS
  61
- Routing table (Transparent Mode)
  62
  - Routing table list
    62
  - Transparent mode route settings
    62
- VLAN overview
  63
  - FortiGate units and VLANs
    64
- VLANs in NAT/Route mode
  64
- VLANs in Transparent mode
  66
- FortiGate IPv6 support
  71
System DHCP
73
- Service
  73
  - DHCP service settings
    74
- Server
  75
  - DHCP server settings
    76
- Exclude range
  77
  - DHCP exclude range settings
    78
- IP/MAC binding
  78
  - DHCP IP/MAC binding settings
    79
- Dynamic IP
  79
System config
81
- System time
  81
- Options
  82
- HA
  84
  - HA configuration
    85
    - Standalone Mode
      85
    - High Availability
      85
    - Cluster Members
      86
    - Mode
      86
    - Group ID
      86
    - Unit Priority
      86
    - Override Master
      87
    - Password
      87
    - Schedule
      88
    - Priorities of Heartbeat Device
      88
    - Heartbeat device IP addresses
      89
    - Monitor priorities
      90
  - Configuring an HA cluster
    90
  - Managing an HA cluster
    94
- SNMP
  97
  - Configuring SNMP
    98
  - SNMP community
    99
  - FortiGate MIBs
    101
  - FortiGate traps
    102
  - Fortinet MIB fields
    103
- Replacement messages
  106
  - Replacement messages list
    106
  - Changing replacement messages
    107
- FortiManager
  108
System administration
109
- Administrators
  109
  - Administrators list
    110
  - Administrators options
    110
    - Using trusted hosts
      111
- Access profiles
  111
  - Access profile list
    112
  - Access profile options
    112
System maintenance
115
- Backup and restore
  115
  - Backing up and Restoring
    116
- Update center
  118
  - Updating antivirus and attack definitions
    120
  - Enabling push updates
    123
    - Push updates when FortiGate IP addresses change
      123
    - Enabling push updates through a NAT device
      124
- Support
  125
  - Sending a bug report
    126
  - Registering a FortiGate unit
    127
- Shutdown
  129
System virtual domain
131
- Virtual domain properties
  132
- Virtual domains
  134
- Configuring virtual domains
  136
Router
141
- Static
  141
  - Static route list
    143
  - Static route options
    144
- Policy
  145
  - Policy route list
    145
  - Policy route options
    146
- RIP
  146
  - General
    147
  - Networks list
    148
  - Networks options
    149
  - Interface list
    149
  - Interface options
    150
  - Distribute list
    151
  - Distribute list options
    152
  - Offset list
    153
  - Offset list options
    153
- Router objects
  154
  - Access list
    154
  - New access list
    154
  - New access list entry
    155
  - Prefix list
    155
  - New Prefix list
    156
  - New prefix list entry
    157
  - Route-map list
    157
  - New Route-map
    158
  - Route-map list entry
    159
  - Key chain list
    160
  - New key chain
    160
  - Key chain list entry
    161
- Monitor
  162
  - Routing monitor list
    162
- CLI configuration
  163
  - get router info ospf
    163
    - Command syntax
      163
    - Examples
      163
  - get router info protocols
    163
    - Command syntax
      163
  - get router info rip
    164
    - Command syntax
      164
    - Examples
      164
  - config router ospf
    164
    - Command syntax pattern
      164
    - Example
      166
    - config area
      167
    - config area command syntax pattern
      167
    - Example
      169
    - config filter-list
      170
    - config filter-list command syntax pattern
      170
    - Example
      171
    - config range
      171
    - config range command syntax pattern
      171
    - Example
      172
    - config virtual-link
      173
    - config virtual link command syntax pattern
      173
    - Example
      175
    - config distribute-list
      175
    - config distribute-list command syntax pattern
      176
    - Example
      176
    - config neighbor
      177
    - config neighbor command syntax pattern
      177
    - Example
      178
    - config network
      179
    - config network command syntax pattern
      179
    - Example
      179
    - config ospf-interface
      180
    - config ospf-interface command syntax pattern
      180
    - Example
      184
    - config redistribute
      184
    - config redistribute command syntax pattern
      185
    - Example
      185
    - config summary-address
      185
    - config summary-address command syntax pattern
      186
    - Example
      186
  - config router static6
    187
    - Command syntax pattern
      187
    - Example
      188
Firewall
189
- Policy
  190
  - How policy matching works
    190
  - Policy list
    190
  - Policy options
    191
  - Advanced policy options
    194
    - Authentication
      194
    - Traffic Shaping
      195
    - Differentiated Services
      195
    - Comments
      196
  - Configuring firewall policies
    196
  - Policy CLI configuration
    197
    - Command syntax pattern
      197
- Address
  198
  - Address list
    199
  - Address options
    199
  - Configuring addresses
    200
  - Address group list
    201
  - Address group options
    201
  - Configuring address groups
    202
- Service
  203
  - Predefined service list
    203
  - Custom service list
    206
  - Custom service options
    207
  - Configuring custom services
    208
  - Service group list
    209
  - Service group options
    209
  - Configuring service groups
    210
- Schedule
  211
  - One-time schedule list
    211
  - One-time schedule options
    212
  - Configuring one-time schedules
    212
  - Recurring schedule list
    213
  - Recurring schedule options
    213
  - Configuring recurring schedules
    214
- Virtual IP
  214
  - Virtual IP list
    215
  - Virtual IP options
    215
  - Configuring virtual IPs
    216
- IP pool
  219
  - IP pool list
    220
  - IP pool options
    220
  - Configuring IP pools
    220
  - IP Pools for firewall policies that use fixed ports
    221
  - IP pools and dynamic NAT
    221
- Protection profile
  222
Users and authentication
233
- Setting authentication timeout
  234
- Local
  234
  - Local user list
    234
  - Local user options
    234
- RADIUS
  235
  - RADIUS server list
    235
  - RADIUS server options
    236
- LDAP
  236
  - LDAP server list
    237
  - LDAP server options
    237
- User group
  239
  - User group list
    239
  - User group options
    240
- CLI configuration
  241
  - peer
    241
    - Command syntax pattern
      241
    - Example
      241
  - peergrp
    242
    - Command syntax pattern
      242
    - Example
      242
VPN
245
- Phase 1
  246
  - Phase 1 list
    246
  - Phase 1 basic settings
    247
  - Phase 1 advanced settings
    249
- Phase 2
  250
  - Phase 2 list
    251
  - Phase 2 basic settings
    251
  - Phase 2 advanced options
    252
- Manual key
  253
  - Manual key list
    254
  - Manual key options
    255
- Concentrator
  256
  - Concentrator list
    256
  - Concentrator options
    257
- Ping Generator
  257
  - Ping generator options
    258
- Monitor
  258
  - Dialup monitor
    259
  - Static IP and dynamic DNS monitor
    259
- PPTP
  260
  - PPTP range
    260
- L2TP
  261
  - L2TP range
    261
- Certificates
  262
  - Local certificate list
    262
  - Certificate request
    263
  - Importing signed certificates
    264
  - CA certificate list
    265
  - Importing CA certificates
    265
- VPN configuration procedures
  266
- CLI configuration
  269
  - ipsec phase1
    269
    - Command syntax pattern
      269
    - Example
      270
  - ipsec phase2
    271
    - Command syntax pattern
      271
  - ipsec vip
    272
    - Command syntax pattern
      273
    - Example
      273
    - Configuring IPSec virtual IP addresses
      274
IPS
277
- Protection profile configuration
  277
- IPS updates and information
  277
- Signature
  278
  - Predefined
    278
  - Custom
    282
- Anomaly
  284
  - Anomaly list
    284
  - Configuring an anomaly
    285
  - Anomaly CLI configuration
    287
    - (config ips anomaly) config limit
      287
    - Command syntax pattern
      287
    - Example
      287
- Configuring IPS logging and alert email
  288
- Default fail open setting
  288
Antivirus
289
- Protection profile configuration
  290
- Order of antivirus operations
  290
- Virus list updates and information
  290
- File block
  290
  - File block list
    291
  - Configuring the file block list
    292
- Quarantine
  292
  - Quarantined files list
    292
  - Quarantined files list options
    293
  - AutoSubmit list
    294
  - AutoSubmit list options
    294
  - Configuring the AutoSubmit list
    294
  - Config
    295
- Config
  296
  - Virus list
    296
  - Config
    296
  - Grayware
    297
  - Grayware options
    297
- CLI configuration
  299
  - config antivirus heuristic
    299
    - Command syntax pattern
      299
    - Example
      299
  - config antivirus quarantine
    300
    - Command syntax pattern
      300
    - antivirus quarantine command keywords and variables
      300
  - config antivirus service http
    300
    - Command syntax pattern
      300
    - How file size limits work
      301
    - Example
      302
  - config antivirus service ftp
    302
    - Command syntax pattern
      302
    - How file size limits work
      303
    - Example
      303
  - config antivirus service pop3
    304
    - Command syntax pattern
      304
    - How file size limits work
      304
    - Example
      305
  - config antivirus service imap
    305
    - Command syntax pattern
      305
    - How file size limits work
      306
    - Example
      306
  - config antivirus service smtp
    307
    - Command syntax pattern
      307
    - How file size limits work
      307
    - Example
      308
Web filter
309
- Protection profile configuration
  310
- Order of web filter operations
  310
- Content block
  311
- URL block
  312
  - Web URL block list
    313
  - Web URL block options
    313
  - Configuring the web URL block list
    314
  - Web pattern block list
    314
  - Web pattern block options
    315
  - Configuring web pattern block
    315
- URL exempt
  315
  - URL exempt list
    316
  - URL exempt list options
    316
  - Configuring URL exempt
    316
- Category block
  317
  - FortiGuard managed web filtering service
    317
    - FortiGuard categories and ratings
      317
    - FortiGuard Service Points
      317
    - FortiGuard licensing
      318
    - FortiGuard configuration
      318
  - Category block configuration options
    318
  - Configuring web category block
    319
  - Category block reports
    319
  - Category block reports options
    320
  - Generating a category block report
    320
  - Category block CLI configuration
    320
    - Command syntax pattern
      321
    - Example
      321
- Script filter
  321
  - Web script filter options
    322
Spam filter
323
- Protection profile configuration
  324
- Order of spam filter operations
  325
- FortiShield
  325
  - FortiShield options
    326
  - Configuring the FortiShield cache
    326
- IP address
  327
  - IP address list
    327
  - IP address options
    327
  - Configuring the IP address list
    328
- RBL & ORDBL
  328
  - RBL & ORDBL list
    329
  - RBL & ORDBL options
    329
  - Configuring the RBL & ORDBL list
    329
- Email address
  330
  - Email address list
    330
  - Email address options
    330
  - Configuring the email address list
    331
- MIME headers
  331
  - MIME headers list
    332
  - MIME headers options
    332
  - Configuring the MIME headers list
    333
- Banned word
  333
  - Banned word list
    334
  - Banned word options
    334
  - Configuring the banned word list
    335
- Using Perl regular expressions
  335
  - Regular expression vs. wildcard match pattern
    336
  - Word boundary
    336
  - Case sensitivity
    336
  - Examples
    337
Log & Report
339
- Log config
  340
  - Log Setting options
    340
    - FortiLog settings
      341
    - Disk settings
      342
    - Memory settings
      343
    - Syslog settings
      343
    - WebTrends settings
      343
  - Alert E-mail options
    344
  - Log filter options
    345
    - Traffic log
      346
    - Event log
      346
    - Anti-virus log
      347
    - Web filter log
      347
    - Attack log
      348
    - Spam filter log
      348
  - Configuring log filters
    348
  - Enabling traffic logging
    348
- Log access
  349
  - Viewing log messages
    349
    - Choosing columns
      350
  - Searching log messages
    351
- CLI configuration
  352
  - fortilog setting
    352
    - Command syntax pattern
      352
    - Example
      353
  - syslogd setting
    354
    - Command syntax pattern
      354
    - Example
      355
FortiGuard categories
357
Glossary
363
Index
367

Benutzerhandbuch

Größe:

4,85 MB
Seiten:

374
Language:

English

Handbuch öffnen

Merkblatt

Größe:

755 KB
Seiten:

2
Language:

English

Handbuch öffnen