Fortinet black logo

EMS Administration Guide

Firewall

Firewall

FortiClient does not include SSL deep inspection. As FortiClient cannot apply signatures marked as "Deep Inspection", do not use these signatures in a profile.

Configuration

Description

Application Firewall

Enable application control.

Enable or disable the eye icon to show or hide this feature from the end user in FortiClient.

General

Notification Bubbles on User's Desktop When Applications Are Blocked

Enable notification bubbles when applications are blocked.

Detect & Block Exploits

Inspect network traffic for intrusions attempting to exploit known vulnerabilities.

Block Known Communication Channels Used by Attackers

Enable Command and Control (C&C) detection using IP address reputation database signatures. Check network traffic against known C&C IP address plus port number combinations.

Categories

Enable FortiClient firewall to allow, block, or monitor applications based on their signature.

Block, allow or monitor the following categories:

  • Botnet
  • Business
  • Cloud.IT
  • Collaboration
  • Email
  • Game
  • General.Interest
  • Industrial
  • Mobile
  • Network.Service
  • P2P
  • Proxy
  • Remote.Access
  • Social.Media
  • Storage.Backup
  • Update
  • Video/Audio
  • VoIP
  • Web.Client
  • All Other Unknown Applications

Application Overrides

Enable FortiClient firewall to allow, block, or monitor applications based on their signature.

Delete

Delete an application.

Add Signatures

Add a signature to an application.

Firewall

FortiClient does not include SSL deep inspection. As FortiClient cannot apply signatures marked as "Deep Inspection", do not use these signatures in a profile.

Configuration

Description

Application Firewall

Enable application control.

Enable or disable the eye icon to show or hide this feature from the end user in FortiClient.

General

Notification Bubbles on User's Desktop When Applications Are Blocked

Enable notification bubbles when applications are blocked.

Detect & Block Exploits

Inspect network traffic for intrusions attempting to exploit known vulnerabilities.

Block Known Communication Channels Used by Attackers

Enable Command and Control (C&C) detection using IP address reputation database signatures. Check network traffic against known C&C IP address plus port number combinations.

Categories

Enable FortiClient firewall to allow, block, or monitor applications based on their signature.

Block, allow or monitor the following categories:

  • Botnet
  • Business
  • Cloud.IT
  • Collaboration
  • Email
  • Game
  • General.Interest
  • Industrial
  • Mobile
  • Network.Service
  • P2P
  • Proxy
  • Remote.Access
  • Social.Media
  • Storage.Backup
  • Update
  • Video/Audio
  • VoIP
  • Web.Client
  • All Other Unknown Applications

Application Overrides

Enable FortiClient firewall to allow, block, or monitor applications based on their signature.

Delete

Delete an application.

Add Signatures

Add a signature to an application.