How file size limits work, Example, 303 how file size limits work – Fortinet 100A User Manual

Page 303

Advertising
background image

Antivirus

config antivirus service ftp

FortiGate-100A Administration Guide

01-28007-0068-20041203

303

How file size limits work

See

“How file size limits work” on page 301

.

Example

This example shows how to set the maximum file size buffered to memory for
scanning at 25 MB, the maximum uncompressed file size that can be buffered to
memory at 100 MB, and how to enable antivirus scanning on ports 20 and 21 for FTP
traffic.

config antivirus service ftp

set memfilesizelimit 25
set uncompsizelimit 100
set port 20 21

end

This example shows how to display the antivirus FTP traffic settings.

get antivirus service ftp

This example shows how to display the configuration for antivirus FTP traffic.

show antivirus service ftp

antivirus service ftp command keywords and variables

Keywords and
variables

Description

Default

Availability

memfilesizelimit
<MB_integer>

Set the maximum file size that can be

buffered to memory for virus scanning.
The maximum file size allowed is 10% of the

FortiGate RAM size. For example, a

FortiGate unit with 256 MB of RAM could

have a threshold range of 1 MB to 25 MB.
Oversized files can be passed or blocked in a

firewall protection profile.
Note: For email scanning, the

memfilesizelimit refers to the final size of the

email after encoding by the email client,

including attachments. Email clients may use

a variety of encoding types and some

encoding types translate into larger file sizes

than the original attachment. The most

common encoding, base64, translates 3

bytes of binary data into 4 bytes of base64

data. So a file may be blocked or logged as

oversized even if the attachment is several

megabytes less than the memfilesizelimit.

10 (MB) All models.

port
<port_integer>

Configure antivirus scanning on a

nonstandard port number or multiple port

numbers for FTP. You can use ports from the

range 1-65535. You can add up to 20 ports.

21

All models.

uncompsizelimit
<MB_integer>

Set the maximum uncompressed file size that

can be buffered to memory for virus scanning.

Enter a value in megabytes between 1 and

the total memory size. Enter 0 for no limit (not

recommended).

10 (MB) All models.

Advertising
Popular Brands
Popular manuals