Description
This article describes how to enable file-filter password protected blocked for 7Z, RAR, PDF, MSOffice, and MSOfficeX.
Scope
For version 6.2.3.
Solution
Previous releases.
# config webfilter profile
edit "encrypted-web"
set comment ''
set replacemsg-group ''
unset options
# config file-filter
set status enable
set log enable
set scan-archive-contents enable
config entries
edit "1"
set comment ''
set protocol http ftp
set action log
set direction any
set password-protected yes
set file-type "zip" <== only zip can be selected
next
end
end
next
end
6.2.3 release.
# config webfilter profile
edit "encrypted-web"
set comment ''
set replacemsg-group ''
unset options
# config file-filter
set status enable
set log enable
set scan-archive-contents enable
# config entries
edit "1"
set comment ''
set protocol http ftp
set action log
set direction any
set password-protected yes
set file-type "zip" "7z" "msoffice" "msofficex" "pdf" "rar" <==- changed
next
end
end
next
end
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.