Description

This article documents the firewall configuration used to derive threat protection value on the data sheet for relevant FortiGates.

Scope

Broadly describe the features that are enabled or configured.

Solution

1) Logging Is enabled.

2) Firewall with default Application Control profile.

3) Default Antivirus profile with 'Send files to FortiSandbox for inspection' enabled.

4) 'high_security' IPS profile, includes 'Block malicious URLs' enabled as a form of web filtering.