FortiGate Version 3.0 MR4 Administration Guide
400 01-30004-0203-20070102
Configuring IM/P2P protocols IM, P2P & VoIP
4 To control Log settings, select the blue arrow for Logging
5 To control content archive settings, select the blue arrow for Content Archive
6 To control FortiGuard web filtering, select the blue arrow for FortiGuard Web
Filtering.
7 Select OK.
How to configure IM/P2P decoder log settings
This section will show you how to enable know protocol decoders for both IM and
P2P applications as well as how to turn on the logging feature for the application.
To enable and log known decoders for IM/P2P applications
1 Go to Intrusion Protection > Signature > Protocol Decoder.
2 Select the blue arrow for IM or P2P encoders.
3 Select Enable to enable the protocol.
4 Select Logging to log the protocol.
5 In the row that corresponds to the protocol decoder you want to edit, select the
Edit icon.
6 Set the action and severity.
7 Select OK.
How to configure older versions of IM/P2P applications
Some older versions of IM protocols are able to bypass file blocking because the
message types are not recognized.
Supported IM protocols include:
• MSN 6.0 and above
• ICQ 4.0 and above
• AIM 5.0 and above
• Yahoo 6.0 and above
If you want to block a protocol that is older than the ones listed above, use the CLI
command: For details see the FortiGate CLI Reference.
config imp2p old-version.
How to configure protocols that are not supported
If you find a protocol that is not supported, please ensure that the IPS package is
up to date. If the IPS package is up to date and the protocol is still not supported
you can use the custom signature.
To create a custom signature
1 Go to Intrusion Protection > Signature > Custom > Create New.
2 Enter a name for the signature.
3 Enter the signature.
4 Use the drop down boxes to select an action and the severity for the signature.
5 Select apply.
To Next Page
Loading...
