Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
hhashemi
Staff
Staff

Created on ‎02-27-2017 03:04 AM Edited on ‎04-08-2022 11:41 AM By Anonymous

Article Id 194055

Technical Note: How to reduce the number of email alerts with the msg=File submitted to Sandbox.

Description

This article explains how to reduce the number of email alerts regarding the files submitted to the FortiSandbox.


Solution

The number of email alerts can be reduced by running the following command in CLI:
# config antivirus profile
(profile) # edit <AV_profile_name>
(AV_proflie_name) # set ftgd-analytics suspicious
# end

In this case only suspicious files will be logged.

The options available with this command are:
# config antivirus profile
(profile) # edit <AV_Profile_Name>
# set ftgd-analytics {disable | suspicious | everything}
# end

where the values for the FortiGuard Analytics mode are:
  • disable: Disable upload to FortiSandbox.
  • suspicious: Submit files supported by FortiSandbox if detected as suspicious by the AV engine.
  • everything: Submit files supported by FortiSandbox if detected as suspicious or clean by the AV engine.
 

 

1438
0 Kudos
Submit Article Idea
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.