Description
This article explains how to add the file name pattern when creating the DLP profile.
Related document:
Create or edit a DLP filter
Scope
FortiGate.
Note:
From v6.2.2 to v7.2.3, the DLP is unavailable in the GUI and can only be configured through CLI. However, it was reintroduced in v7.2.4 (If Data Leak Prevention is not visible in the tree menu, go to System -> Feature Visibility and enable it.)
Solution
When creating a DLP profile, it is normal that the file name pattern list is empty.
Go to Security Profiles -> Data Leak Prevention and select 'DLP Sensor'
Select 'Add Filter' and select 'Files', specify File Types & File Name Patterns. Under Select Entries, in the search bar, type the desired file type (for example, .pdf), and then select '+’ to Create.
After selecting the ‘+’, the window below will be displayed. Add the file type to the filter.
CLI configuration:
config dlp filepattern
edit 1
set name "test"
config entries
edit ".pdf"
next
end
next
end
edit 1
set name "test"
config entries
edit ".pdf"
next
end
next
end
Note: In the newer FortiGate versions, such as v7.4.x and v7.6.x, the DLP option is not available under Security Profiles and Feature Visibility to access from the GUI.
To configure Data Loss Prevention UTM on FortiGate firewall policies, add /utm/dlp to the URL or IP address used to access FortiGate.
When multiple VDOMs are enabled, the VDOM name may need to be specified in the URL /utm/dlp?vdom=<vdom name>.
For example, the URL used to access DLP using the GUI is https://10.5.210.81/utm/dlp.
