Fortinet black logo

CLI Reference

webfilter fortiguard

Configure FortiGuard Web Filter service.

  config webfilter fortiguard
      Description: Configure FortiGuard Web Filter service.
      set cache-mode [ttl|db-ver]
      set cache-prefix-match [enable|disable]
      set cache-mem-percent {integer}
      set ovrd-auth-port-http {integer}
      set ovrd-auth-port-https {integer}
      set ovrd-auth-port-https-flow {integer}
      set ovrd-auth-port-warning {integer}
      set ovrd-auth-https [enable|disable]
      set warn-auth-https [enable|disable]
      set close-ports [enable|disable]
      set request-packet-size-limit {integer}
  end

config webfilter fortiguard

Parameter Name Description Type Size
cache-mode Cache entry expiration mode.
ttl: Expire cache items by time-to-live.
db-ver: Expire cache items when the server DB version changes.
option -
cache-prefix-match Enable/disable prefix matching in the cache.
enable: Enable setting.
disable: Disable setting.
option -
cache-mem-percent Maximum percentage of available memory allocated to caching (1 - 15%). integer Minimum value: 1 Maximum value: 15
ovrd-auth-port-http Port to use for FortiGuard Web Filter HTTP override authentication integer Minimum value: 0 Maximum value: 65535
ovrd-auth-port-https Port to use for FortiGuard Web Filter HTTPS override authentication in proxy mode. integer Minimum value: 0 Maximum value: 65535
ovrd-auth-port-https-flow Port to use for FortiGuard Web Filter HTTPS override authentication in flow mode. integer Minimum value: 0 Maximum value: 65535
ovrd-auth-port-warning Port to use for FortiGuard Web Filter Warning override authentication. integer Minimum value: 0 Maximum value: 65535
ovrd-auth-https Enable/disable use of HTTPS for override authentication.
enable: Enable setting.
disable: Disable setting.
option -
warn-auth-https Enable/disable use of HTTPS for warning and authentication.
enable: Enable setting.
disable: Disable setting.
option -
close-ports Close ports used for HTTP/HTTPS override authentication and disable user overrides.
enable: Enable setting.
disable: Disable setting.
option -
request-packet-size-limit Limit size of URL request packets sent to FortiGuard server (0 for default). integer Minimum value: 576 Maximum value: 10000

Configure FortiGuard Web Filter service.

  config webfilter fortiguard
      Description: Configure FortiGuard Web Filter service.
      set cache-mode [ttl|db-ver]
      set cache-prefix-match [enable|disable]
      set cache-mem-percent {integer}
      set ovrd-auth-port-http {integer}
      set ovrd-auth-port-https {integer}
      set ovrd-auth-port-https-flow {integer}
      set ovrd-auth-port-warning {integer}
      set ovrd-auth-https [enable|disable]
      set warn-auth-https [enable|disable]
      set close-ports [enable|disable]
      set request-packet-size-limit {integer}
  end

config webfilter fortiguard

Parameter Name Description Type Size
cache-mode Cache entry expiration mode.
ttl: Expire cache items by time-to-live.
db-ver: Expire cache items when the server DB version changes.
option -
cache-prefix-match Enable/disable prefix matching in the cache.
enable: Enable setting.
disable: Disable setting.
option -
cache-mem-percent Maximum percentage of available memory allocated to caching (1 - 15%). integer Minimum value: 1 Maximum value: 15
ovrd-auth-port-http Port to use for FortiGuard Web Filter HTTP override authentication integer Minimum value: 0 Maximum value: 65535
ovrd-auth-port-https Port to use for FortiGuard Web Filter HTTPS override authentication in proxy mode. integer Minimum value: 0 Maximum value: 65535
ovrd-auth-port-https-flow Port to use for FortiGuard Web Filter HTTPS override authentication in flow mode. integer Minimum value: 0 Maximum value: 65535
ovrd-auth-port-warning Port to use for FortiGuard Web Filter Warning override authentication. integer Minimum value: 0 Maximum value: 65535
ovrd-auth-https Enable/disable use of HTTPS for override authentication.
enable: Enable setting.
disable: Disable setting.
option -
warn-auth-https Enable/disable use of HTTPS for warning and authentication.
enable: Enable setting.
disable: Disable setting.
option -
close-ports Close ports used for HTTP/HTTPS override authentication and disable user overrides.
enable: Enable setting.
disable: Disable setting.
option -
request-packet-size-limit Limit size of URL request packets sent to FortiGuard server (0 for default). integer Minimum value: 576 Maximum value: 10000