Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions

    • Administration Guide

    Home FortiProxy 7.4.5 Administration Guide
    7.4.5
    7.6.0
    7.4.6
    7.4.5
    7.4.4
    7.4.3
    7.4.2
    7.4.1
    7.4.0
    7.2.12
    7.2.11
    7.2.10
    7.2.9
    7.2.8
    7.2.7
    7.2.0
    7.0.19
    7.0.17
    7.0.0
    2.0.0
    1.2.0
    1.1.0
    1.0.0

    Web Filter Risk Level NEW

    Web Filter Risk Level NEW

    You can use risk level as a parameter for policy matching and web filtering. The policy or web filter action applies when the risk score of the URL (see Web Risk Overrides NEW) is within the score range of the specified risk level. FortiProxy provides the following predefined risk levels (read-only):

    Risk level

    Score range

    Description
    high

    91-100

    		 Strong confidence of malicious intent.
    low

    21-50

    		 Low predictive risk of attack.
    moderate

    51-70

    		 Generally benign with a potential risk of attack.
    suspicious

    71-90

    		 Medium confidence of malicious intent.
    trustworthy

    1-20

    		 Very low predictive risk of attack.
    unrated

    0

    The URL does not exist in FortiGuard DB or the risk score of the URL is unknown.
    To define a custom risk level with a desired score range in the GUI:

    1. Go to the Security Profiles > Web Filter Risk Level page.

    2. Click Create New to create a new entry or select an existing custom risk level and click Edit.

    3. Specify the name of the risk level.

    4. Specify the low and high scores for the risk level.

    5. Click OK.

    To add a custom risk level with a desired score range in the CLI:

    config webfilter ftgd-risk-level

    edit "Good"

    set high 30

    set low 10

    next

    end

    You can then select the risk level in the risk level dropdown list when you Create or edit a policy or Create or edit a web filter profile.

    For example, you can create a risk level Good with a score range of 10-30 and use it in a policy. FortiProxy will then apply the policy for URLs with a risk score between 10-30.

    Previous
    Next

    Web Filter Risk Level NEW

    Web Filter Risk Level NEW

    You can use risk level as a parameter for policy matching and web filtering. The policy or web filter action applies when the risk score of the URL (see Web Risk Overrides NEW) is within the score range of the specified risk level. FortiProxy provides the following predefined risk levels (read-only):

    Risk level

    Score range

    Description
    high

    91-100

    		 Strong confidence of malicious intent.
    low

    21-50

    		 Low predictive risk of attack.
    moderate

    51-70

    		 Generally benign with a potential risk of attack.
    suspicious

    71-90

    		 Medium confidence of malicious intent.
    trustworthy

    1-20

    		 Very low predictive risk of attack.
    unrated

    0

    The URL does not exist in FortiGuard DB or the risk score of the URL is unknown.
    To define a custom risk level with a desired score range in the GUI:

    1. Go to the Security Profiles > Web Filter Risk Level page.

    2. Click Create New to create a new entry or select an existing custom risk level and click Edit.

    3. Specify the name of the risk level.

    4. Specify the low and high scores for the risk level.

    5. Click OK.

    To add a custom risk level with a desired score range in the CLI:

    config webfilter ftgd-risk-level

    edit "Good"

    set high 30

    set low 10

    next

    end

    You can then select the risk level in the risk level dropdown list when you Create or edit a policy or Create or edit a web filter profile.

    For example, you can create a risk level Good with a score range of 10-30 and use it in a policy. FortiProxy will then apply the policy for URLs with a risk score between 10-30.

    Previous
    Next