Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
Not applicable

Created on ‎12-22-2005 12:00 AM Edited on ‎01-30-2024 03:30 AM By Community Manager

Article Id 194432

FortiGate Firewall Web Filtering , File filtering, and Antivirus engine sequence

Article

The FortiGate firewall has several layers of traffic filters and AV engine to protect your network. The sequence differs between firmware releases in order to introduce new feature or flexibility.

 

100116_cdavid_Filter-sequence.gif

For example, on a FortiGate running release 3.0 MR5, and with all the filters and engine being enabled, filtering takes place in the following order:

  • URL exempt list
  • File block
  • File oversize
  • AV scan

This means:

  • The exempt list takes effect first. If the traffic is in the exempt list, the firewall will let it pass.
  • If the traffic is not in the exempt list, the file block list is checked. If it is in the block list, it will be blocked.
  • If the traffic is not in the exempt list or in the file block list, the file size will be checked. If the file size exceeds the threshold and the FortiGate setting is "Block", the traffic will be blocked. If the FortiGate setting is "Pass", the firewall will let it pass.
  • If the traffic is not in the exempt list, nor in the file block list, and is not beyond the file size threshold, it will be scanned for viruses.

 

4350
0 Kudos
Submit Article Idea
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.