Fortinet black logo

Administration Guide

Configuring an FTP security inline profile

Configuring an FTP security inline profile

FTP security inline profiles combine previously-configured rules, profiles, and policies in a comprehensive set that can be applied in an FTP server policy.

For details about applying an FTP security inline profile to an FTP server policy, see Creating an FTP server policy.

Before creating an FTP security inline profile

Prior to creating an FTP security inline profile, you should create and configure the rules, profiles, and policies that you plan to add to the FTP security inline profile. You can include the following:

To create an FTP security inline profile
tooltip icon

If FTP security isn't enabled in Feature Visibility, you must enable it before you can create an FTP security inline profile. To enable FTP security, go to System > Config > Feature Visibility and enable FTP Security.

  1. Go to Policy > FTP Security Profile.
  2. To access this part of the web UI, your administrator's account access profile must have Read and Write permission to items in the Server Policy Configuration category. For details, see Permissions.

  3. Click Create New.
  4. Configure these settings:
  5. Name

    Enter a unique name that can be referenced in other parts of the configuration. Don't use spaces or special characters. The maximum length is 63 characters.

    FTP Command Restriction

    Select the name of an FTP command restriction rule that you previously created. If you haven't created an FTP command restriction rule to include in this profile yet, see To create an FTP command restriction rule for instructions about creating one.

    FTP File Check

    Select the name of an FTP file check rule that you previously created. If you haven't created an FTP file check rule to include in this profile yet, see To create an FTP file check rule for instructions about creating one.

    IP List

    Select the name of an IP List that you previously created. If you haven't created an IP List rule to include in this profile yet, see To configure policies for individual source IPs for instructions about creating one.

    GEO IP

    Select the name of a geo IP block policy that you previously created. If you haven't created a geo IP block policy to include in this profile yet, see To configure blocking by geography for instructions about creating one.

    IP Reputation

    Enable to include the active IP reputation policy in this profile. If you haven't created an IP reputation policy to include in this profile yet, see To configure an IP reputation policy for instructions about creating one.

  6. Click OK.

Configuring an FTP security inline profile

FTP security inline profiles combine previously-configured rules, profiles, and policies in a comprehensive set that can be applied in an FTP server policy.

For details about applying an FTP security inline profile to an FTP server policy, see Creating an FTP server policy.

Before creating an FTP security inline profile

Prior to creating an FTP security inline profile, you should create and configure the rules, profiles, and policies that you plan to add to the FTP security inline profile. You can include the following:

To create an FTP security inline profile
tooltip icon

If FTP security isn't enabled in Feature Visibility, you must enable it before you can create an FTP security inline profile. To enable FTP security, go to System > Config > Feature Visibility and enable FTP Security.

  1. Go to Policy > FTP Security Profile.
  2. To access this part of the web UI, your administrator's account access profile must have Read and Write permission to items in the Server Policy Configuration category. For details, see Permissions.

  3. Click Create New.
  4. Configure these settings:
  5. Name

    Enter a unique name that can be referenced in other parts of the configuration. Don't use spaces or special characters. The maximum length is 63 characters.

    FTP Command Restriction

    Select the name of an FTP command restriction rule that you previously created. If you haven't created an FTP command restriction rule to include in this profile yet, see To create an FTP command restriction rule for instructions about creating one.

    FTP File Check

    Select the name of an FTP file check rule that you previously created. If you haven't created an FTP file check rule to include in this profile yet, see To create an FTP file check rule for instructions about creating one.

    IP List

    Select the name of an IP List that you previously created. If you haven't created an IP List rule to include in this profile yet, see To configure policies for individual source IPs for instructions about creating one.

    GEO IP

    Select the name of a geo IP block policy that you previously created. If you haven't created a geo IP block policy to include in this profile yet, see To configure blocking by geography for instructions about creating one.

    IP Reputation

    Enable to include the active IP reputation policy in this profile. If you haven't created an IP reputation policy to include in this profile yet, see To configure an IP reputation policy for instructions about creating one.

  6. Click OK.