Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
Not applicable

Created on ‎05-24-2005 12:00 AM

Article Id 196185

Performing antivirus scanning non-standard TCP ports

Article

Description

How to perform antivirus scanning on non-standard TCP ports.

Components

  • All FortiGate units
  • FortiOS 2.80 and 3.0

Steps or Commands

The following is the default list of standard protocols and associated ports that can be scanned by the Fortigate:

FTP - TCP 21
SMTP - TCP 25
HTTP - TCP 80
POP3 - TCP 110
IMAP - TCP 143

The Fortigate can also be configured to scan these protocols, but on different ports. This is configured via the CLI.

FortiOS Version 3.0

config antivirus service http
   set port 8080
end

FortiOS Version 2.80

config antivirus service http
    set port 8080
    show
   config antivirus service "http"
       set memfilesizelimit 10
       set port 80
        set port 8080
       set uncompsizelimit 10
    end
end


Related Articles

Technical Note : Configuring FortiGate Protocol Recognition to scan traffic on non-standard port - F...

Labels:
3141
0 Kudos
Submit Article Idea
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.