Fortinet Document Library

Version:


Table of Contents

CLI Reference

6.2.1
Copy Link

Configure quarantine options.

  config antivirus quarantine
      Description: Configure quarantine options.
      set agelimit {integer}
      set maxfilesize {integer}
      set quarantine-quota {integer}
      set drop-infected {option1}, {option2}, ...
      set store-infected {option1}, {option2}, ...
      set drop-blocked {option1}, {option2}, ...
      set store-blocked {option1}, {option2}, ...
      set drop-heuristic {option1}, {option2}, ...
      set store-heuristic {option1}, {option2}, ...
      set lowspace [drop-new|ovrw-old]
      set destination [NULL|disk|...]
  end

config antivirus quarantine

Parameter Name Description Type Size
agelimit Age limit for quarantined files (0 - 479 hours, 0 means forever). integer Minimum value: 0 Maximum value: 479
maxfilesize Maximum file size to quarantine (0 - 500 Mbytes, 0 means unlimited). integer Minimum value: 0 Maximum value: 500
quarantine-quota The amount of disk space to reserve for quarantining files (0 - 4294967295 Mbytes, depends on disk space). integer Minimum value: 0 Maximum value: 4294967295
drop-infected Do not quarantine infected files found in sessions using the selected protocols. Dropped files are deleted instead of being quarantined.
imap: IMAP.
smtp: SMTP.
pop3: POP3.
http: HTTP.
ftp: FTP.
nntp: NNTP.
imaps: IMAPS.
smtps: SMTPS.
pop3s: POP3S.
https: HTTPS.
ftps: FTPS.
mapi: MAPI.
cifs: CIFS.
option -
store-infected Quarantine infected files found in sessions using the selected protocols.
imap: IMAP.
smtp: SMTP.
pop3: POP3.
http: HTTP.
ftp: FTP.
nntp: NNTP.
imaps: IMAPS.
smtps: SMTPS.
pop3s: POP3S.
https: HTTPS.
ftps: FTPS.
mapi: MAPI.
cifs: CIFS.
option -
drop-blocked Do not quarantine dropped files found in sessions using the selected protocols. Dropped files are deleted instead of being quarantined.
imap: IMAP.
smtp: SMTP.
pop3: POP3.
http: HTTP.
ftp: FTP.
nntp: NNTP.
imaps: IMAPS.
smtps: SMTPS.
pop3s: POP3S.
ftps: FTPS.
mapi: MAPI.
cifs: CIFS.
option -
store-blocked Quarantine blocked files found in sessions using the selected protocols.
imap: IMAP.
smtp: SMTP.
pop3: POP3.
http: HTTP.
ftp: FTP.
nntp: NNTP.
imaps: IMAPS.
smtps: SMTPS.
pop3s: POP3S.
ftps: FTPS.
mapi: MAPI.
cifs: CIFS.
option -
drop-heuristic Do not quarantine files detected by heuristics found in sessions using the selected protocols. Dropped files are deleted instead of being quarantined.
imap: IMAP.
smtp: SMTP.
pop3: POP3.
http: HTTP.
ftp: FTP.
nntp: NNTP.
imaps: IMAPS.
smtps: SMTPS.
pop3s: POP3S.
https: HTTPS.
ftps: FTPS.
mapi: MAPI.
cifs: CIFS.
option -
store-heuristic Quarantine files detected by heuristics found in sessions using the selected protocols.
imap: IMAP.
smtp: SMTP.
pop3: POP3.
http: HTTP.
ftp: FTP.
nntp: NNTP.
imaps: IMAPS.
smtps: SMTPS.
pop3s: POP3S.
https: HTTPS.
ftps: FTPS.
mapi: MAPI.
cifs: CIFS.
option -
lowspace Select the method for handling additional files when running low on disk space.
drop-new: Drop (delete) the most recently quarantined files.
ovrw-old: Overwrite the oldest quarantined files. That is, the files that are closest to being deleted from the quarantine.
option -
destination Choose whether to quarantine files to the FortiGate disk or to FortiAnalyzer or to delete them instead of quarantining them.
NULL: Files that would be quarantined are deleted.
disk: Quarantine files to the FortiGate hard disk.
FortiAnalyzer: FortiAnalyzer
option -

Configure quarantine options.

  config antivirus quarantine
      Description: Configure quarantine options.
      set agelimit {integer}
      set maxfilesize {integer}
      set quarantine-quota {integer}
      set drop-infected {option1}, {option2}, ...
      set store-infected {option1}, {option2}, ...
      set drop-blocked {option1}, {option2}, ...
      set store-blocked {option1}, {option2}, ...
      set drop-heuristic {option1}, {option2}, ...
      set store-heuristic {option1}, {option2}, ...
      set lowspace [drop-new|ovrw-old]
      set destination [NULL|disk|...]
  end

config antivirus quarantine

Parameter Name Description Type Size
agelimit Age limit for quarantined files (0 - 479 hours, 0 means forever). integer Minimum value: 0 Maximum value: 479
maxfilesize Maximum file size to quarantine (0 - 500 Mbytes, 0 means unlimited). integer Minimum value: 0 Maximum value: 500
quarantine-quota The amount of disk space to reserve for quarantining files (0 - 4294967295 Mbytes, depends on disk space). integer Minimum value: 0 Maximum value: 4294967295
drop-infected Do not quarantine infected files found in sessions using the selected protocols. Dropped files are deleted instead of being quarantined.
imap: IMAP.
smtp: SMTP.
pop3: POP3.
http: HTTP.
ftp: FTP.
nntp: NNTP.
imaps: IMAPS.
smtps: SMTPS.
pop3s: POP3S.
https: HTTPS.
ftps: FTPS.
mapi: MAPI.
cifs: CIFS.
option -
store-infected Quarantine infected files found in sessions using the selected protocols.
imap: IMAP.
smtp: SMTP.
pop3: POP3.
http: HTTP.
ftp: FTP.
nntp: NNTP.
imaps: IMAPS.
smtps: SMTPS.
pop3s: POP3S.
https: HTTPS.
ftps: FTPS.
mapi: MAPI.
cifs: CIFS.
option -
drop-blocked Do not quarantine dropped files found in sessions using the selected protocols. Dropped files are deleted instead of being quarantined.
imap: IMAP.
smtp: SMTP.
pop3: POP3.
http: HTTP.
ftp: FTP.
nntp: NNTP.
imaps: IMAPS.
smtps: SMTPS.
pop3s: POP3S.
ftps: FTPS.
mapi: MAPI.
cifs: CIFS.
option -
store-blocked Quarantine blocked files found in sessions using the selected protocols.
imap: IMAP.
smtp: SMTP.
pop3: POP3.
http: HTTP.
ftp: FTP.
nntp: NNTP.
imaps: IMAPS.
smtps: SMTPS.
pop3s: POP3S.
ftps: FTPS.
mapi: MAPI.
cifs: CIFS.
option -
drop-heuristic Do not quarantine files detected by heuristics found in sessions using the selected protocols. Dropped files are deleted instead of being quarantined.
imap: IMAP.
smtp: SMTP.
pop3: POP3.
http: HTTP.
ftp: FTP.
nntp: NNTP.
imaps: IMAPS.
smtps: SMTPS.
pop3s: POP3S.
https: HTTPS.
ftps: FTPS.
mapi: MAPI.
cifs: CIFS.
option -
store-heuristic Quarantine files detected by heuristics found in sessions using the selected protocols.
imap: IMAP.
smtp: SMTP.
pop3: POP3.
http: HTTP.
ftp: FTP.
nntp: NNTP.
imaps: IMAPS.
smtps: SMTPS.
pop3s: POP3S.
https: HTTPS.
ftps: FTPS.
mapi: MAPI.
cifs: CIFS.
option -
lowspace Select the method for handling additional files when running low on disk space.
drop-new: Drop (delete) the most recently quarantined files.
ovrw-old: Overwrite the oldest quarantined files. That is, the files that are closest to being deleted from the quarantine.
option -
destination Choose whether to quarantine files to the FortiGate disk or to FortiAnalyzer or to delete them instead of quarantining them.
NULL: Files that would be quarantined are deleted.
disk: Quarantine files to the FortiGate hard disk.
FortiAnalyzer: FortiAnalyzer
option -