i make DLP sensor and map it with a policy to prevent download files large than 500M after apply, user can not download small or large files
Solved! Go to Solution.
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
activate (Block Oversized File/Email) in porxy option
Please provide the output of your sensor from the CLI:
config dlp sensor
edit "Large-File"
config filter
edit 1
set name "Large-File-Filter"
set proto smtp pop3 imap http-get http-post mapi
set filter-by file-size
set file-size 51240
set action log-only
next
end
next
end
https://help.fortinet.com/fos60hlp/60/Content/FortiOS/fortigate-security-profiles/DLP/DLP%20examples... You can also watch to flows to get a better idea why it's failing: diagnose debug reset diagnose debug enable diagnose debug flow show console enable diagnose debug flow filter addr <source ip> diagnose debug flow trace start 100 To stop the debug: diagnose debug disable diagnose debug reset
QUESTIONS: 1. since 6.2 DLP disappear from menu. What is alternative method to limit download size 2. will that "debug flow" work in proxy mode? tq
The patch notes only says DLP can only be configured via the CLI. That to me says it was only removed from the GUI.
NSE4/FMG-VM64/FortiAnalyzer-VM/6.0 (FWF30E/FW92D/FGT200D/FGT101E/FGT81E)/ FAP220B/221C
activate (Block Oversized File/Email) in porxy option
@CAD
Haven't tested but I think you are right
The location is in Security Profiles/Proxy Options/
But I think that is Global Settings.
Let say I want Director Group have 100MB limit and Staff Group 50MB limit
Is that possible?
yes, just create profile for each group and assign to fwpolicy.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1641 | |
1069 | |
751 | |
443 | |
210 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.