232 Fortinet Inc.
Antivirus protection
Antivirus scanning
Virus scanning intercepts most files (including files compressed with up to 12 layers of
compression using zip, rar, gzip, tar, upx, and OLE) in the content streams for which
antivirus protection as been enabled. Each file is tested to determine the file type and
to determine the most effective method of scanning the file for viruses. For example,
binary files are scanned using binary virus scanning and Microsoft Office files
containing macros are scanned for macro viruses.
FortiGate virus scanning does not scan the following file types:
• cdimage
• floppy image
•.ace
•.bzip2
•.Tar+Gzip+Bzip2
If a file is found to contain a virus it is removed from the content stream and replaced
with a replacement message.
To scan FortiGate firewall traffic for viruses
1 Select antivirus scanning in a content profile.
See “Adding a content profile” on page 170.
2 Add this content profile to firewall policies to apply virus scanning to the traffic
controlled by the firewall policy.
See “Adding a content profile to a policy” on page 171.
Figure 37: Example content profile for virus scanning