config system fortiguard
Configure FortiGuard services.
config system fortiguard
Description: Configure FortiGuard services.
set antispam-cache [enable|disable]
set antispam-cache-mpercent {integer}
set antispam-cache-ttl {integer}
set antispam-expiration {integer}
set antispam-force-off [enable|disable]
set antispam-license {integer}
set antispam-timeout {integer}
set anycast-sdns-server-ip {ipv4-address}
set anycast-sdns-server-port {integer}
set auto-join-forticloud [enable|disable]
set ddns-server-ip {ipv4-address}
set ddns-server-port {integer}
set fortiguard-anycast [enable|disable]
set fortiguard-anycast-source [fortinet|aws|...]
set interface {string}
set interface-select-method [auto|sdwan|...]
set load-balance-servers {integer}
set outbreak-prevention-cache [enable|disable]
set outbreak-prevention-cache-mpercent {integer}
set outbreak-prevention-cache-ttl {integer}
set outbreak-prevention-expiration {integer}
set outbreak-prevention-force-off [enable|disable]
set outbreak-prevention-license {integer}
set outbreak-prevention-timeout {integer}
set port [8888|53|...]
set protocol [udp|http|...]
set proxy-password {password}
set proxy-server-ip {ipv4-address}
set proxy-server-port {integer}
set proxy-username {string}
set sandbox-region {string}
set sdns-options {option1}, {option2}, ...
set sdns-server-ip {user}
set sdns-server-port {integer}
set source-ip {ipv4-address}
set source-ip6 {ipv6-address}
set update-server-location [usa|any]
set webfilter-cache [enable|disable]
set webfilter-cache-ttl {integer}
set webfilter-expiration {integer}
set webfilter-force-off [enable|disable]
set webfilter-license {integer}
set webfilter-timeout {integer}
end
config system fortiguard
|
Parameter |
Description |
Type |
Size |
Default |
||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
antispam-cache |
Enable/disable FortiGuard antispam request caching. Uses a small amount of memory but improves performance. |
option |
- |
enable |
||||||||||
|
|
|
|||||||||||||
|
antispam-cache-mpercent |
Maximum percent of FortiGate memory the antispam cache is allowed to use. |
integer |
Minimum value: 1 Maximum value: 15 |
2 |
||||||||||
|
antispam-cache-ttl |
Time-to-live for antispam cache entries in seconds. Lower times reduce the cache size. Higher times may improve performance since the cache will have more entries. |
integer |
Minimum value: 300 Maximum value: 86400 |
1800 |
||||||||||
|
antispam-expiration |
Expiration date of the FortiGuard antispam contract. |
integer |
Minimum value: 0 Maximum value: 4294967295 |
0 |
||||||||||
|
antispam-force-off |
Enable/disable turning off the FortiGuard antispam service. |
option |
- |
disable |
||||||||||
|
|
|
|||||||||||||
|
antispam-license |
Interval of time between license checks for the FortiGuard antispam contract. |
integer |
Minimum value: 0 Maximum value: 4294967295 |
4294967295 |
||||||||||
|
antispam-timeout |
Antispam query time out. |
integer |
Minimum value: 1 Maximum value: 30 |
7 |
||||||||||
|
anycast-sdns-server-ip |
IP address of the FortiGuard anycast DNS rating server. |
ipv4-address |
Not Specified |
0.0.0.0 |
||||||||||
|
anycast-sdns-server-port |
Port to connect to on the FortiGuard anycast DNS rating server. |
integer |
Minimum value: 1 Maximum value: 65535 |
853 |
||||||||||
|
auto-join-forticloud * |
Automatically connect to and login to FortiCloud. |
option |
- |
enable |
||||||||||
|
|
|
|||||||||||||
|
ddns-server-ip |
IP address of the FortiDDNS server. |
ipv4-address |
Not Specified |
0.0.0.0 |
||||||||||
|
ddns-server-port |
Port used to communicate with FortiDDNS servers. |
integer |
Minimum value: 1 Maximum value: 65535 |
443 |
||||||||||
|
fortiguard-anycast |
Enable/disable use of FortiGuard's anycast network. |
option |
- |
enable |
||||||||||
|
|
|
|||||||||||||
|
fortiguard-anycast-source |
Configure which of Fortinet's servers to provide FortiGuard services in FortiGuard's anycast network. Default is Fortinet. |
option |
- |
fortinet |
||||||||||
|
|
|
|||||||||||||
|
interface |
Specify outgoing interface to reach server. |
string |
Not Specified |
|
||||||||||
|
interface-select-method |
Specify how to select outgoing interface to reach server. |
option |
- |
auto |
||||||||||
|
|
|
|||||||||||||
|
load-balance-servers |
Number of servers to alternate between as first FortiGuard option. |
integer |
Minimum value: 1 Maximum value: 266 |
1 |
||||||||||
|
outbreak-prevention-cache |
Enable/disable FortiGuard Virus Outbreak Prevention cache. |
option |
- |
enable |
||||||||||
|
|
|
|||||||||||||
|
outbreak-prevention-cache-mpercent |
Maximum percent of memory FortiGuard Virus Outbreak Prevention cache can use. |
integer |
Minimum value: 1 Maximum value: 15 |
2 |
||||||||||
|
outbreak-prevention-cache-ttl |
Time-to-live for FortiGuard Virus Outbreak Prevention cache entries. |
integer |
Minimum value: 300 Maximum value: 86400 |
300 |
||||||||||
|
outbreak-prevention-expiration |
Expiration date of FortiGuard Virus Outbreak Prevention contract. |
integer |
Minimum value: 0 Maximum value: 4294967295 |
0 |
||||||||||
|
outbreak-prevention-force-off |
Turn off FortiGuard Virus Outbreak Prevention service. |
option |
- |
disable |
||||||||||
|
|
|
|||||||||||||
|
outbreak-prevention-license |
Interval of time between license checks for FortiGuard Virus Outbreak Prevention contract. |
integer |
Minimum value: 0 Maximum value: 4294967295 |
4294967295 |
||||||||||
|
outbreak-prevention-timeout |
FortiGuard Virus Outbreak Prevention time out. |
integer |
Minimum value: 1 Maximum value: 30 |
7 |
||||||||||
|
port |
Port used to communicate with the FortiGuard servers. |
option |
- |
443 |
||||||||||
|
|
|
|||||||||||||
|
protocol |
Protocol used to communicate with the FortiGuard servers. |
option |
- |
https |
||||||||||
|
|
|
|||||||||||||
|
proxy-password |
Proxy user password. |
password |
Not Specified |
|
||||||||||
|
proxy-server-ip |
IP address of the proxy server. |
ipv4-address |
Not Specified |
0.0.0.0 |
||||||||||
|
proxy-server-port |
Port used to communicate with the proxy server. |
integer |
Minimum value: 0 Maximum value: 65535 |
0 |
||||||||||
|
proxy-username |
Proxy user name. |
string |
Not Specified |
|
||||||||||
|
sandbox-region |
Cloud sandbox region. |
string |
Not Specified |
|
||||||||||
|
sdns-options |
Customization options for the FortiGuard DNS service. |
option |
- |
|
||||||||||
|
|
|
|||||||||||||
|
sdns-server-ip |
IP address of the FortiGuard DNS rating server. |
user |
Not Specified |
|
||||||||||
|
sdns-server-port |
Port to connect to on the FortiGuard DNS rating server. |
integer |
Minimum value: 1 Maximum value: 65535 |
53 |
||||||||||
|
source-ip |
Source IPv4 address used to communicate with FortiGuard. |
ipv4-address |
Not Specified |
0.0.0.0 |
||||||||||
|
source-ip6 |
Source IPv6 address used to communicate with FortiGuard. |
ipv6-address |
Not Specified |
:: |
||||||||||
|
update-server-location |
Signature update server location. |
option |
- |
any |
||||||||||
|
|
|
|||||||||||||
|
webfilter-cache |
Enable/disable FortiGuard web filter caching. |
option |
- |
enable |
||||||||||
|
|
|
|||||||||||||
|
webfilter-cache-ttl |
Time-to-live for web filter cache entries in seconds. |
integer |
Minimum value: 300 Maximum value: 86400 |
3600 |
||||||||||
|
webfilter-expiration |
Expiration date of the FortiGuard web filter contract. |
integer |
Minimum value: 0 Maximum value: 4294967295 |
0 |
||||||||||
|
webfilter-force-off |
Enable/disable turning off the FortiGuard web filtering service. |
option |
- |
disable |
||||||||||
|
|
|
|||||||||||||
|
webfilter-license |
Interval of time between license checks for the FortiGuard web filter contract. |
integer |
Minimum value: 0 Maximum value: 4294967295 |
4294967295 |
||||||||||
|
webfilter-timeout |
Web filter query time out. |
integer |
Minimum value: 1 Maximum value: 30 |
15 |
||||||||||
* This parameter may not exist in some models.