Fortinet black logo

CLI Reference

6.2.15
7.4.3
7.4.2
7.4.1
7.4.0
7.2.8
7.2.7
7.2.6
7.2.5
7.2.4
7.2.3
7.2.2
7.2.1
7.2.0
7.0.15
7.0.14
7.0.13
7.0.12
7.0.11
7.0.10
7.0.9
7.0.8
7.0.7
7.0.6
7.0.5
7.0.4
7.0.3
7.0.2
7.0.1
7.0.0
6.4.15
6.4.14
6.4.13
6.4.12
6.4.11
6.4.10
6.4.9
6.4.8
6.4.7
6.4.6
6.4.5
6.4.4
6.4.3
6.4.2
6.4.1
6.4.0
6.2.16
6.2.15
6.2.14
6.2.13
6.2.12
6.2.11
6.2.10
6.2.9
6.2.8
6.2.7
6.2.6
6.2.5
6.2.4
6.2.3
6.2.2
6.2.1
6.0.0
5.6.0
5.4.0
5.2.0
5.0.0

config antivirus quarantine

config antivirus quarantine

Note

This command is available for model(s): FortiGate 1000D, FortiGate 100D, FortiGate 100EF, FortiGate 100E, FortiGate 100F, FortiGate 101E, FortiGate 101F, FortiGate 1100E, FortiGate 1101E, FortiGate 1200D, FortiGate 140D-POE, FortiGate 140D, FortiGate 140E-POE, FortiGate 140E, FortiGate 1500DT, FortiGate 1500D, FortiGate 2000E, FortiGate 200E, FortiGate 201E, FortiGate 2200E, FortiGate 2201E, FortiGate 2500E, FortiGate 3000D, FortiGate 300E, FortiGate 301E, FortiGate 30E 3G4G GBL, FortiGate 30E 3G4G INTL, FortiGate 30E 3G4G NAM, FortiGate 30E, FortiGate 3100D, FortiGate 3200D, FortiGate 3300E, FortiGate 3301E, FortiGate 3400E, FortiGate 3401E, FortiGate 3600E, FortiGate 3601E, FortiGate 3700D, FortiGate 3800D, FortiGate 3810D, FortiGate 3815D, FortiGate 3960E, FortiGate 3980E, FortiGate 400D, FortiGate 400E Bypass, FortiGate 400E, FortiGate 401E, FortiGate 40F 3G4G, FortiGate 40F, FortiGate 5001D, FortiGate 5001E1, FortiGate 5001E, FortiGate 500D, FortiGate 500E, FortiGate 501E, FortiGate 50E, FortiGate 51E, FortiGate 52E, FortiGate 600D, FortiGate 600E, FortiGate 601E, FortiGate 60E DSL, FortiGate 60E-POE, FortiGate 60E, FortiGate 60F, FortiGate 61E, FortiGate 61F, FortiGate 800D, FortiGate 80E-POE, FortiGate 80E, FortiGate 80F Bypass, FortiGate 80F-POE, FortiGate 80F, FortiGate 81E-POE, FortiGate 81E, FortiGate 81F-POE, FortiGate 81F, FortiGate 900D, FortiGate 90E, FortiGate 91E, FortiGate 92D, FortiGate VM64, FortiGateRugged 60F 3G4G, FortiGateRugged 60F, FortiGateRugged 90D, FortiWiFi 30E 3G4G INTL, FortiWiFi 30E 3G4G NAM, FortiWiFi 30E, FortiWiFi 40F 3G4G, FortiWiFi 40F, FortiWiFi 50E 2R, FortiWiFi 50E, FortiWiFi 51E, FortiWiFi 60E DSL, FortiWiFi 60E, FortiWiFi 61E, FortiWiFi 61F, FortiWiFi 80F 2R, FortiWiFi 81F 2R-POE, FortiWiFi 81F 2R.

It is not available for: FortiGateRugged 30D.

Configure quarantine options.

config antivirus quarantine
    Description: Configure quarantine options.
    set agelimit {integer}
    set destination [NULL|disk|...]
    set drop-blocked {option1}, {option2}, ...
    set drop-heuristic {option1}, {option2}, ...
    set drop-infected {option1}, {option2}, ...
    set lowspace [drop-new|ovrw-old]
    set maxfilesize {integer}
    set quarantine-quota {integer}
    set store-blocked {option1}, {option2}, ...
    set store-heuristic {option1}, {option2}, ...
    set store-infected {option1}, {option2}, ...
end

config antivirus quarantine

Parameter

Description

Type

Size

agelimit

Age limit for quarantined files.

integer

Minimum value: 0 Maximum value: 479

destination

Choose whether to quarantine files to the FortiGate disk or to FortiAnalyzer or to delete them instead of quarantining them.

option

-

Option

Description

NULL

Files that would be quarantined are deleted.

disk

Quarantine files to the FortiGate hard disk.

FortiAnalyzer

FortiAnalyzer

drop-blocked

Do not quarantine dropped files found in sessions using the selected protocols. Dropped files are deleted instead of being quarantined.

option

-

Option

Description

imap

IMAP.

smtp

SMTP.

pop3

POP3.

http

HTTP.

ftp

FTP.

nntp

NNTP.

imaps

IMAPS.

smtps

SMTPS.

pop3s

POP3S.

ftps

FTPS.

mapi

MAPI.

cifs

CIFS.

ssh

SSH.

drop-heuristic

Do not quarantine files detected by heuristics found in sessions using the selected protocols. Dropped files are deleted instead of being quarantined.

option

-

Option

Description

imap

IMAP.

smtp

SMTP.

pop3

POP3.

http

HTTP.

ftp

FTP.

nntp

NNTP.

imaps

IMAPS.

smtps

SMTPS.

pop3s

POP3S.

https

HTTPS.

ftps

FTPS.

mapi

MAPI.

cifs

CIFS.

ssh

SSH.

drop-infected

Do not quarantine infected files found in sessions using the selected protocols. Dropped files are deleted instead of being quarantined.

option

-

Option

Description

imap

IMAP.

smtp

SMTP.

pop3

POP3.

http

HTTP.

ftp

FTP.

nntp

NNTP.

imaps

IMAPS.

smtps

SMTPS.

pop3s

POP3S.

https

HTTPS.

ftps

FTPS.

mapi

MAPI.

cifs

CIFS.

ssh

SSH.

lowspace

Select the method for handling additional files when running low on disk space.

option

-

Option

Description

drop-new

Drop (delete) the most recently quarantined files.

ovrw-old

Overwrite the oldest quarantined files. That is, the files that are closest to being deleted from the quarantine.

maxfilesize

Maximum file size to quarantine.

integer

Minimum value: 0 Maximum value: 500

quarantine-quota

The amount of disk space to reserve for quarantining files.

integer

Minimum value: 0 Maximum value: 4294967295

store-blocked

Quarantine blocked files found in sessions using the selected protocols.

option

-

Option

Description

imap

IMAP.

smtp

SMTP.

pop3

POP3.

http

HTTP.

ftp

FTP.

nntp

NNTP.

imaps

IMAPS.

smtps

SMTPS.

pop3s

POP3S.

ftps

FTPS.

mapi

MAPI.

cifs

CIFS.

ssh

SSH.

store-heuristic

Quarantine files detected by heuristics found in sessions using the selected protocols.

option

-

Option

Description

imap

IMAP.

smtp

SMTP.

pop3

POP3.

http

HTTP.

ftp

FTP.

nntp

NNTP.

imaps

IMAPS.

smtps

SMTPS.

pop3s

POP3S.

https

HTTPS.

ftps

FTPS.

mapi

MAPI.

cifs

CIFS.

ssh

SSH.

store-infected

Quarantine infected files found in sessions using the selected protocols.

option

-

Option

Description

imap

IMAP.

smtp

SMTP.

pop3

POP3.

http

HTTP.

ftp

FTP.

nntp

NNTP.

imaps

IMAPS.

smtps

SMTPS.

pop3s

POP3S.

https

HTTPS.

ftps

FTPS.

mapi

MAPI.

cifs

CIFS.

ssh

SSH.
Previous
Next

config antivirus quarantine

Note

This command is available for model(s): FortiGate 1000D, FortiGate 100D, FortiGate 100EF, FortiGate 100E, FortiGate 100F, FortiGate 101E, FortiGate 101F, FortiGate 1100E, FortiGate 1101E, FortiGate 1200D, FortiGate 140D-POE, FortiGate 140D, FortiGate 140E-POE, FortiGate 140E, FortiGate 1500DT, FortiGate 1500D, FortiGate 2000E, FortiGate 200E, FortiGate 201E, FortiGate 2200E, FortiGate 2201E, FortiGate 2500E, FortiGate 3000D, FortiGate 300E, FortiGate 301E, FortiGate 30E 3G4G GBL, FortiGate 30E 3G4G INTL, FortiGate 30E 3G4G NAM, FortiGate 30E, FortiGate 3100D, FortiGate 3200D, FortiGate 3300E, FortiGate 3301E, FortiGate 3400E, FortiGate 3401E, FortiGate 3600E, FortiGate 3601E, FortiGate 3700D, FortiGate 3800D, FortiGate 3810D, FortiGate 3815D, FortiGate 3960E, FortiGate 3980E, FortiGate 400D, FortiGate 400E Bypass, FortiGate 400E, FortiGate 401E, FortiGate 40F 3G4G, FortiGate 40F, FortiGate 5001D, FortiGate 5001E1, FortiGate 5001E, FortiGate 500D, FortiGate 500E, FortiGate 501E, FortiGate 50E, FortiGate 51E, FortiGate 52E, FortiGate 600D, FortiGate 600E, FortiGate 601E, FortiGate 60E DSL, FortiGate 60E-POE, FortiGate 60E, FortiGate 60F, FortiGate 61E, FortiGate 61F, FortiGate 800D, FortiGate 80E-POE, FortiGate 80E, FortiGate 80F Bypass, FortiGate 80F-POE, FortiGate 80F, FortiGate 81E-POE, FortiGate 81E, FortiGate 81F-POE, FortiGate 81F, FortiGate 900D, FortiGate 90E, FortiGate 91E, FortiGate 92D, FortiGate VM64, FortiGateRugged 60F 3G4G, FortiGateRugged 60F, FortiGateRugged 90D, FortiWiFi 30E 3G4G INTL, FortiWiFi 30E 3G4G NAM, FortiWiFi 30E, FortiWiFi 40F 3G4G, FortiWiFi 40F, FortiWiFi 50E 2R, FortiWiFi 50E, FortiWiFi 51E, FortiWiFi 60E DSL, FortiWiFi 60E, FortiWiFi 61E, FortiWiFi 61F, FortiWiFi 80F 2R, FortiWiFi 81F 2R-POE, FortiWiFi 81F 2R.

It is not available for: FortiGateRugged 30D.

Configure quarantine options.

config antivirus quarantine
    Description: Configure quarantine options.
    set agelimit {integer}
    set destination [NULL|disk|...]
    set drop-blocked {option1}, {option2}, ...
    set drop-heuristic {option1}, {option2}, ...
    set drop-infected {option1}, {option2}, ...
    set lowspace [drop-new|ovrw-old]
    set maxfilesize {integer}
    set quarantine-quota {integer}
    set store-blocked {option1}, {option2}, ...
    set store-heuristic {option1}, {option2}, ...
    set store-infected {option1}, {option2}, ...
end

config antivirus quarantine

Parameter

Description

Type

Size

agelimit

Age limit for quarantined files.

integer

Minimum value: 0 Maximum value: 479

destination

Choose whether to quarantine files to the FortiGate disk or to FortiAnalyzer or to delete them instead of quarantining them.

option

-

Option

Description

NULL

Files that would be quarantined are deleted.

disk

Quarantine files to the FortiGate hard disk.

FortiAnalyzer

FortiAnalyzer

drop-blocked

Do not quarantine dropped files found in sessions using the selected protocols. Dropped files are deleted instead of being quarantined.

option

-

Option

Description

imap

IMAP.

smtp

SMTP.

pop3

POP3.

http

HTTP.

ftp

FTP.

nntp

NNTP.

imaps

IMAPS.

smtps

SMTPS.

pop3s

POP3S.

ftps

FTPS.

mapi

MAPI.

cifs

CIFS.

ssh

SSH.

drop-heuristic

Do not quarantine files detected by heuristics found in sessions using the selected protocols. Dropped files are deleted instead of being quarantined.

option

-

Option

Description

imap

IMAP.

smtp

SMTP.

pop3

POP3.

http

HTTP.

ftp

FTP.

nntp

NNTP.

imaps

IMAPS.

smtps

SMTPS.

pop3s

POP3S.

https

HTTPS.

ftps

FTPS.

mapi

MAPI.

cifs

CIFS.

ssh

SSH.

drop-infected

Do not quarantine infected files found in sessions using the selected protocols. Dropped files are deleted instead of being quarantined.

option

-

Option

Description

imap

IMAP.

smtp

SMTP.

pop3

POP3.

http

HTTP.

ftp

FTP.

nntp

NNTP.

imaps

IMAPS.

smtps

SMTPS.

pop3s

POP3S.

https

HTTPS.

ftps

FTPS.

mapi

MAPI.

cifs

CIFS.

ssh

SSH.

lowspace

Select the method for handling additional files when running low on disk space.

option

-

Option

Description

drop-new

Drop (delete) the most recently quarantined files.

ovrw-old

Overwrite the oldest quarantined files. That is, the files that are closest to being deleted from the quarantine.

maxfilesize

Maximum file size to quarantine.

integer

Minimum value: 0 Maximum value: 500

quarantine-quota

The amount of disk space to reserve for quarantining files.

integer

Minimum value: 0 Maximum value: 4294967295

store-blocked

Quarantine blocked files found in sessions using the selected protocols.

option

-

Option

Description

imap

IMAP.

smtp

SMTP.

pop3

POP3.

http

HTTP.

ftp

FTP.

nntp

NNTP.

imaps

IMAPS.

smtps

SMTPS.

pop3s

POP3S.

ftps

FTPS.

mapi

MAPI.

cifs

CIFS.

ssh

SSH.

store-heuristic

Quarantine files detected by heuristics found in sessions using the selected protocols.

option

-

Option

Description

imap

IMAP.

smtp

SMTP.

pop3

POP3.

http

HTTP.

ftp

FTP.

nntp

NNTP.

imaps

IMAPS.

smtps

SMTPS.

pop3s

POP3S.

https

HTTPS.

ftps

FTPS.

mapi

MAPI.

cifs

CIFS.

ssh

SSH.

store-infected

Quarantine infected files found in sessions using the selected protocols.

option

-

Option

Description

imap

IMAP.

smtp

SMTP.

pop3

POP3.

http

HTTP.

ftp

FTP.

nntp

NNTP.

imaps

IMAPS.

smtps

SMTPS.

pop3s

POP3S.

https

HTTPS.

ftps

FTPS.

mapi

MAPI.

cifs

CIFS.

ssh

SSH.
Previous
Next