Measures reported by FgFnScanUnitTest

Using an antivirus profile you can configure the FortiGate unit to apply antivirus protection to HTTP, FTP, IMAP, POP3, SMTP, and NNTP sessions. If your FortiGate unit supports SSL/SSH content scanning and inspection, you can also configure antivirus protection for HTTPS, IMAPS, POP3S, SMTPS, and FTPS sessions. Antivirus scanning is configured in an AntiVirus profile, but it is enabled in a firewall policy. Once the use of an AntiVirus profile is enabled and selected in one or more firewall policies, all the traffic controlled by those firewall policies will be scanned according to the settings in that profile. Antivirus scanning examines files for viruses, worms, trojans, and other malware. The antivirus scan engine has a database of virus signatures it uses to identify infections. If the scanner finds a signature in a file, it determines that the file is infected and takes the appropriate action. Multiple scan units can be configured for antiviru scanning. If the antivirus scanning is not performed or if the scan unit is not configured for antivirus scanning, then there may be a chance for the target environment to be exposed to malware/trojans. Critical information in the target environment when exposed to malware/trojans may lead to loss of confidential data resulting in greater losses. Therefore it is essential to monitor the scan units of the FortiGate firewall round the clock. The FgFnScanUnitTest test helps administrators in this regard!

This test auto-discovers the scan units of the target FortiGate firewall and for each scan unit, this test reports the number of files scanned. This way, administrators can keep track on the number of files scanned in the target environment.

Outputs of the test : One set of results for each scan unit of the target firewall being monitored.

The measures made by this test are as follows: