How to Use FortiGuard’s AntiVirus Service with FortiMail


This recipe details how FortiGuard AntiVirus operates and guides you through the process of using FortiGuard AntiVirus.

Understanding FortiGuard AntiVirus

Using data analytic techniques, FortiGuard labs are able to quickly detect and respond to new outbreaks, blocking Suspicious Virus Objects without the need for antivirus signatures.

The illustration to the right details the process flow for antivirus detection.

 Sandbox Illustration

Connecting to FortiGuard AntiVirus Service

To get the up-to-date antivirus engine and signatures, your FortiMail unit must connect to the FortiGuard server.

To connect to FortiGuard AntiVirus services

1.  Go to Maintenance > FortiGuard > Update.

 2.  Select the Use Override server radio button if you have your own server and enter server address.

 3.  Select the Allow push update radio button to allow the FortiMail unit to accept push notifications. Push notifications only notify the FortiMail unit that an update is available and do not transmit the update itself.

4.  Select when you would like FortiGuard to update.

5.  Select Apply.

Creating an AntiVirus Profile

Once you’ve connected to the FortiGuard antivirus services, you’ll need to create an AntiVirus profile.

 1.  Go to Profile > AntiVirus > AntiVirus.

 2.  Select New.

 3.  Enable the Virus Scanning radio button and select the features under the heading that you want enabled.

If you have a FortiSandbox, also enable it and configure the options.

3-3 Virus Scan Profile

 4.  Select Create.

Using the AntiVirus Profile in a Policy

To enable your newly created antivirus Profile.

  1. Go to Policy > Policies.
 2.  Select New under the IP Policies or the Recipient Policies section.
 3.  Select your newly created profile from the AntiVirus dropdown menu in the Profiles section.
 4.  Select Create.