Created on 12-30-2022 10:15 AM Edited on 01-30-2024 02:20 AM By Kate_M
Description |
This article describes how to configure an antivirus profile to upload files to FortiSandbox for virus scanning |
Scope |
FortiOS 6.0, FortiOS 6.2, FortiOS 6.4, FortiOS 7.0, FortiOS 7.2. |
Solution |
In the firmware series FortiOS 6.0, FortiOS 6.2, FortiOS 6.4, FortiOS 7.0:
# config antivirus profile edit AV1 ---> antivirus profile name set ftgd-analytics everything <----- It should be set to suspicious or everything. set analytics-max-upload {value} <----- Maximum size of files that can be uploaded to FortiSandbox (1 - 395 MB, default = 10).
ftgd-analytics-max-upload entry is only available via Cli when ftgd-analytics is set to either suspicious or everything.
In the Firmware Series FortiOS 7.2:
# config antivirus profile edit AV1 -----à antivirus profile name set fortisandbox-mode everything <----- It should be set to suspicious or everything. set fortisandbox-max-upload {value} <----- Maximum size of files that can be uploaded to FortiSandbox (1 - 395 MB, default = 10).
fortisandbox-mode-max-upload entry is only available via CLI when fortisandbox-mode is set to either suspicious or everything.
Note: - Suspicious: FortiSandbox post-transfer scan: submit supported files if heuristics or other methods determine they are suspicious. - Everything: FortiSandbox post-transfer scan: submit supported files and known infected files. |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.