dlp : filepattern
 
filepattern
Use this command to add, edit or delete the file patterns used for DLP file blocking and to set which protocols to check for files to block.
Syntax
config dlp filepattern
edit <filepattern_list_int>
set name <list_name_str>
set comment <comment_str>
config entries
edit <filepattern_str>
set file-type {unknown | ignored | activemime | arj | aspack | base64 | bat | binhex | bzip | bzip2 | cab | jad | elf | exe | fsg | gzip | hlp | hta | html | javascript | lzh | msc | msoffice | mime | petite | prc | rar | class | sis | tar | upx | uue | cod | zip}
set filter-type {pattern | type}
end
Variable
Description
Default
<filepattern_list_int>
A unique number to identify the file pattern list.
 
name <list_name_str>
Enter a name for the file pattern header list.
 
comment <comment_str>
Optionally enter a comment about the file pattern header list.
 
<filepattern_str>
The name of the file pattern being configured. This can be any character string.
 
file-type
{unknown | ignored | activemime | arj | aspack | base64 | bat | binhex | bzip | bzip2 | cab | jad | elf | exe | fsg | gzip | hlp | hta | html | javascript | lzh | msc | msoffice | mime | petite | prc | rar | class | sis | tar | upx | uue | cod | zip}
This command is only available and valid when filter-type is set to type.
Select the type of file the file filter will search for. Note that unlike the file pattern filter, this file type filter will examine the file contents to determine the what type of file it is. The file name and file extension is ignored.
Because of the way the file type filter works, renaming files to make them appear to be of a different type will not allow them past the FortiGate unit without detection.
Two of the available options are not file types:
Select unknown to configure a rule affecting every file format the file type filter unit does not recognize. Unknown includes every file format not available in the file-type command.
Select ignored to configure a rule affecting traffic the FortiGate unit typically does not scan. This includes primarily streaming audio and video.
unknown
filter-type {pattern | type}
Select the file filter detection method.
Enter pattern to examine files only by their names. For example, if filter-type is set to pattern, and the pattern is *.zip, all files ending in .zip will trigger this file filter. Even files ending in .zip that are not actually ZIP archives will trigger this filter.
Enter type to examine files only by their contents. Using the above example, if filter-type is set to type, and the type is zip, all ZIP archives will trigger this file filter. Even files renamed with non-zip file extensions will trigger this filter.
pattern