Create security profiles

AntiVirus

1. Go to Security Profiles > AntiVirus.

   

2. Create a new profile or use an existing Fortigate default profile.

   

   Select the Inspected Protocols, Features, and Action options as needed.

Web filter

1. Go to Security Profiles > Web Filter.

   

2. Create a new profile or use an existing Fortigate default profile.

   

3. Enable URL Filter > Create New to define rules:

   • To allow access only to a specific website (e.g., fptsmartcloud.com), create an allow rule for that URL.

     

   • To block all other access, use a Regex pattern [^.] to block remaining sites.

   

   

Application control

1. Go to Security Profiles > Application Control.

   

2. Create a new profile or use an existing Fortigate default profile to block access to social media platforms.

   

   

3. Use existing signatures or create a new one via Create New > Custom Application Signature.

   

Intrusion prevention (IPS)

1. Go to Security Profiles > Intrusion Prevention.

   

2. Create a new profile or use an existing Fortigate default profile to block access to C&C servers (Botnet).

   

   

3. Use existing IPS signatures or create a new one via IPS Signature and Filter > Create New.

   

Web Application Firewall (WAF)

1. Go to Security Profiles > Web Application Firewall.

   

2. Create a new profile or use an existing Fortigate default profile to block web server attacks (SQL Injection, Cross Site Scripting).

   

3. Enable the relevant signatures via Edit > SQL Injection (Extended) and Cross Site (Extended).