Description

This article describes how to block images using a Content Analysis profile.

Content Analysis is a licensed feature that allows users to detect adult content in real time.

This service is a real-time analysis of the content passing through the FortiProxy.
Unlike other image analysis tools, this one does not just look for skin tone colors but can detect limbs, body parts, and the position of bodies.
After adult content is detected, such content can be optionally blocked or reported.

Scope

FortiProxy.

Solution

To use Content Analysis, it is necessary to set up at least one profile and apply it to a policy.
Content Analysis profiles are configured under Content Analyses -> Image Analysis.

1. Create or edit a Content Analysis profile.
   
   Select 'Create New' to open the 'Create Content Analysis' window.
   
   

2. After configuring settings in the New Content Analysis Profile window or Edit Content Analysis window and then select 'Apply'.
   
   

Note.

• Deep SSL Inspection should be used for Image Analysis.
• Select a strictness value between 0 and 100. The higher the image score, the more chance of the image being explicit. The challenge with this setting is that if it is set too high, it will block legitimate images. To set it too low, it will allow explicit images through. If the image score is above this setting, the Rating Error Action is taken.
  
• Apply an antivirus profile with legacy mode enabled.
  
  

config antivirus profile
    edit "Test"
        set scan-mode legacy
end

• Legacy is Force 'scanunit' to scan all files.

For now and after releasing firmware v2.0.5 GA, FortiProxy can cache some blocked images into the local ram disk, so that the admin can review the image from the Content Analyses logs.
Enable the blocked-image cache in the Content Analysis profile.

config image-analyzer profile

    edit "<profile>"

        set blocked-img-cache enable <-------

    next

end

Specify the maximum size of the blocked-image cache and set the caching mode: