In a proxy or flow-based antivirus profile, you can configure the FortiGate unit to detect and block botnet server connection attempts. This feature also blocks attempted access to phishing URLs. The antivirus database is constantly updated with the addresses of known command and control (C&C) sites that Botnet clients attempt to connect to as well as phishing URLs.

To enable Botnet and phishing protection in either a proxy or flow-based antivirus profile, select Block Connections to Botnet Servers.