Filter
Top Products
Firewall Protection profile options
FortiGate-100A Administration Guide 01-28007-0068-20041203 227
Configuring IPS options
Figure 110:Protection profile IPS options
The following options are available for IPS through the protection profile. See “IPS” on
page 277 for more IPS configuration options.
Configuring content archive options
Figure 111:Protection profile content archive options
Return e-mail DNS check Enable or disable checking that the domain specified in the reply-to
or from address has an A or MX record.
MIME headers check Enable or disable checking source MIME headers against the
configured spam filter MIME header list.
Banned word check Enable or disable checking source email against the configured
spam filter banned word list.
Spam Action The action for the spam filter to take. Tagged allows you to append
a custom tag to the subject or header of email identified as spam.
For SMTP, if you have virus scan or splice (CLI) enabled, you will
only be able to discard spam email. (Note that splice is enabled
automatically when you enable virus scanning.) Discard
immediately drops the connection. Without splice or scanning
enabled, you can chose to tag or discard SMTP spam.
You can tag email by adding a custom word or phrase to the subject
or inserting a MIME header and value into the email header. You
can choose to log any spam action in the event log.
Append to Choose to append the tag to the subject or MIME header of the
email identified as spam.
Append with Enter a word or phrase (tag) to append to email identified as spam.
The maximum length is 63 characters.
Note: Some popular email clients cannot filter messages based on the MIME header. Check
your email client features before deciding how to tag spam.
IPS Signature Enable or disable signature based intrusion detection and
prevention for all protocols.
IPS Anomaly Enable or disable anomaly based intrusion detection and
prevention for all protocols.