Troubleshooting Tip: Inline mode not available as 'fortisandbox-mode' in Antivirus profile

nevan · ‎10-08-2025

Description

This article describes why inline mode may not be available as a scan strategy in FortiSandbox mode in an Antivirus profile.

Scope

FortiGate.

Solution

An inline scan strategy in an Antivirus profile can be configured once the antivirus profile is set to proxy-based.

CLI:

config antivirus profile
edit av-test
set feature-set proxy
set fortisandbox-mode inline
..
end

Even after setting up the Antivirus profile in proxy mode, the inline feature may be grayed out.

This can happen if the inline scan option is disabled which is default setup in FortiSandbox configuration. Once enabled the inline scan strategy will be enabled in Antivirus profile.

config system fortisandbox
set status enable
set inline-scan enable
end

The inline scanning can be configured with FortiGuard AI-Based Sandbox Service or FortiSandbox with FortiGate Cloud.

In this case, 'sandbox-inline-scan' has to be enabled under FortiGuard settings.

CLI:

config system fortiguard
set sandbox-region <region>
set sandbox-inline-scan enable
end

Once enabled, the inline scan strategy can be used from the Antivirus profile.

Related article:
Technical Tip: 'This FortiGate unit does not have a valid FortiSandbox Cloud license.' error when en...

Troubleshooting Tip: Inline mode not available as 'fortisandbox-mode' in Antivirus profile

You are leaving our website