Initial Fortigate Setup and VIP

Forum|Forum|7 years ago
March 20, 2019
1 reply
2230 views

I just bought a Fortigate 60E and I'm doing the initial setup. When I'm setting up VIP (1to1 nat) for my servers and all I'm opening are 80, 443, 21 does it make sense to check the anti-virus on the ipv4 security policy or is that just a waste of time? Thanks!

ede_pfau

SuperUser

HTTP and FTP use cleartext so AV is advisable. If you activate SSL inspection the FGT can even scan HTTPS traffic.

I would not publish a server without scanning for AV and IPS (cross site scripting, SQL injection,...the top 10 vulnerabilities).

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded