Fortinet black logo

CLI Reference

profile cousin-domain

profile cousin-domain

Use this command to mitigate business email compromise (BEC) email-impersonation risks. Domain names may be deliberately misspelled, either by character removal, substitution, and/or transposition, in order to make emails look as though they originate from trusted internal sources.

Configure cousin domains to define those domain names that should be subjected to cousin domain scanning and those domains that are exempt from scanning.

Once created, cousin domain profiles can be referenced in antispam profiles. In addition, cousin domain scan options can be set within antispam profiles. See set cousin-domain-scan-option {auto-detection body-detection header-detection} for more information.

Syntax

config profile cousin-domain

edit <profile_name>

config entry

edit <entry_int>

set domain-name <string>

set domain-name-type {wildcard | regex}

next

end

config exempt

edit <exempt_int>

set domain-name <string>

set domain-name-type {wildcard | regex}

next

end

end

Variable

Description

Default

<profile_name> Enter the name of the cousin profile.
<entry_int>

Enter the entry number of the cousin domain profile.

If the entry profile does not currently exist, it will be created.

<exempt_int>

Enter the entry number of the cousin domain profile.

If the exempt profile does not currently exist, it will be created.

domain-name <string>

Enter the domain name string of the entry rule/exempt rule either as a wildcard or regular expression.

domain-name-type {wildcard | regex}

Select the domain name type of the entry rule/exempt rule.

regex

profile cousin-domain

Use this command to mitigate business email compromise (BEC) email-impersonation risks. Domain names may be deliberately misspelled, either by character removal, substitution, and/or transposition, in order to make emails look as though they originate from trusted internal sources.

Configure cousin domains to define those domain names that should be subjected to cousin domain scanning and those domains that are exempt from scanning.

Once created, cousin domain profiles can be referenced in antispam profiles. In addition, cousin domain scan options can be set within antispam profiles. See set cousin-domain-scan-option {auto-detection body-detection header-detection} for more information.

Syntax

config profile cousin-domain

edit <profile_name>

config entry

edit <entry_int>

set domain-name <string>

set domain-name-type {wildcard | regex}

next

end

config exempt

edit <exempt_int>

set domain-name <string>

set domain-name-type {wildcard | regex}

next

end

end

Variable

Description

Default

<profile_name> Enter the name of the cousin profile.
<entry_int>

Enter the entry number of the cousin domain profile.

If the entry profile does not currently exist, it will be created.

<exempt_int>

Enter the entry number of the cousin domain profile.

If the exempt profile does not currently exist, it will be created.

domain-name <string>

Enter the domain name string of the entry rule/exempt rule either as a wildcard or regular expression.

domain-name-type {wildcard | regex}

Select the domain name type of the entry rule/exempt rule.

regex