Technical Tip: Antivirus oversize logging
| Description | This article describes the behaviour of Antivirus UTM logging. By default, it only logs when the files are infected or blocked, but does not log clean or scanned files, including oversized files. |
| Scope | FortiGate. |
| Solution | The below option is to enable oversize files logging if needed, for details on the oversize files that bypassed scanning.
From the CLI:
config firewall profile-protocol-options edit <protocol profile> set oversize-log enable end
The default oversize limit is 10MB. Refer to this KB article about configuring the oversize limit: Technical Tip: Maximum oversize threshold.
|
