Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
Not applicable

Created on ‎10-27-2004 12:00 AM Edited on ‎08-16-2024 03:30 AM By Staff

Article Id 191788

Technical Tip: Why does FTP slow down when antivirus is enabled

Description

 

This article explains why the FTP sessions are slowing down when passing over a FortiGate firewall with Antivirus profile enabled in the policy.

 

Scope

 

FortiGate.

 

Solution

 

This is considered a normal behavior.  The software will display high slowness, but does not mean the FTP session is hanging. It is necessary to wait for the file to be downloaded to the FortiGate.

 

Here are the steps during an ftp download with antivirus enabled:

  1. The file is first entirely downloaded to the FortiGate (up to 'default' 10MB configurable in AV profile).
  2. The file is scanned for viruses on the FortiGate.
  3. The file is transferred to the FTP client on PC.

 

So the PC only 'sees' the FTP packet coming on step 3. 

If the FTP server is slow, or the file is big, or the internet connection is slow, it may take some time for the FortiGate to achieve step 1.

 

To prevent the FTP session from timing out, the FortiGate sends keepalives to the PC.

Labels:
2314
0 Kudos
Suggest New Article
Article Feedback
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.