FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
sthapa
Staff
Staff
Article Id 192546

Description

 

This article describes how to resolve value conflicts with system settings error when applying the CDR (Content Disarm and Reconstruction) feature in the FortiGate antivirus security profile.

 

Scope

 

FortiGate.

Solution

 

 
When 'SMTP Splice' option is enabled in the proxy options profile, CDR cannot be used in the antivirus profile.

The 'SMTP Splice' option is incompatible with CDR feature.
 
 
To resolve this issue, create a separate custom protocol option. For example:
 
Protocol Option.jpg
 
After, disable 'SMTP splice' options in the proxy profile.

Login to the CLI and configure the following:

config firewall profile-protocol-options
edit Custom
config smtp
        set options fragmail splice <- Change to 'oversize'.
    end
end

 

After, use the same protocol option under all of the firewall policies which are using Antivirus profiles with the Content disarm and reconstruction option enabled. For example:


Protocol Policy .jpg

 

After making these changes, enable the Content Disarm and reconstruction option again.