Description | This article describes the DLP configuration that will block if it contains an exact word inside a file. |
Scope | FortiGate. |
Solution |
config dlp dictionary edit "File-test-dictionary" set uuid 1b6e72d8-de10-51ef-cf25-f506a08c949b config entries edit 1 set type "keyword" set pattern "text" next end next end
config dlp sensor edit "File-test-Sensor" config entries edit 1 set dictionary "File-test-dictionary" next end next end
config dlp profile edit "File-test-Profile" set feature-set proxy config rule edit 1 set name "Blocked-testing" set severity critical set type message set proto http-post set filter-by sensor set sensor "File-test-Sensor" set action block next end next end
Note: A deep inspection is required for the DLP.
config firewall policy edit 1 set utm-status enable set inspection-mode proxy set ssl-ssh-profile "deep-inspection" set dlp-profile "File-test-Profile" set logtraffic all set nat enable next end
|
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2025 Fortinet, Inc. All Rights Reserved.