I just bought a Fortigate 60E and I'm doing the initial setup. When I'm setting up VIP (1to1 nat) for my servers and all I'm opening are 80, 443, 21 does it make sense to check the anti-virus on the ipv4 security policy or is that just a waste of time? Thanks!
HTTP and FTP use cleartext so AV is advisable. If you activate SSL inspection the FGT can even scan HTTPS traffic.
I would not publish a server without scanning for AV and IPS (cross site scripting, SQL injection,...the top 10 vulnerabilities).
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1736 | |
1107 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.