Fortigate &0B Built in Patterns

Fortigate ile Dosya Engelleme,File Blocking
How do I block files?
Configure file blocking to remove all files that are a potential threat and to prevent active computer virus attacks. You can block files by name, by extension, or any other pattern, giving you the flexibility to block potentially harmful content. You can also enable or disable file blocking by protocol for each file pattern you configure.

When the FortiGate unit blocks a file such as a image file (gif, jpg), the user will not see the image on a web page, nor receive any indication that the file was blocked.

FortiOS 3.0MR3
To configure file blocking

1.Go to AntiVirus > File Pattern.
2.Select Create New to create a new list, and select OK.
3.Select Edit for the new list.
4.Select Create New.
5.Enter the file name or file pattern.
6.Select Block.
7.Select OK.
For more information on file blocking or adding file blocking to protection profiles, see the FortiGate Administration Guide.

FortiOS 3.0 up to MR3
To configure file blocking

1.Go to AntiVirus > File Pattern.
2.Select Create New.
3.Enter the file name or file pattern.
4.Select Block.
5.Select OK.
For more information on file blocking or adding file blocking to protection profiles, see the FortiGate Administration Guide.

Fortigate Mr 6,Mr 7 de dosya engellemek için aşağıdaki komutları console ile çalıştırınız.Bu komutlar FortiGate Mr6 ve Mr7 de default olarak pass geçmektedir.

config antivirus heuristic
set mode block
end


ek olarak
config antivirus filepattern
edit 1 veya ? veya tab tuşunu kullnın
config entries
edit *.exe
set active http pop3 smtp
set action block
end
end

web filter -url filter da şöyle bir kayıt açıp engellemeyi güçlendirebilirsiniz
new butonuna tıklayın
exe
regex
block

web filter -url filter da şöyle bir kayıt açıp engellemeyi güçlendirebilirsiniz
new butonuna tıklayın
exe
regex
block

Bu şekilde sorun giderildi.Teşekkür ederim,Yalnız esas sorun nedir anlamış değilim...araştırmalara devam,tekrar teşekkürler üstad...