• Enable only the protocols you need to scan. If you have antivirus scans occurring on the SMTP server, or use FortiMail, it is redundant to have scanning occur on the FortiGate unit as well.

• Reduce the maximum file size to be scanned. Viruses usually travel in small files of around 1 to 2 megabytes.

• Antivirus scanning within an HA cluster can impact performance.

• Enable grayware scanning on security profiles tied to Internet browsing.

• Do not quarantine files unless you regularly monitor and review them. This is otherwise a waste of space and impacts performance.

• Use file patterns to avoid scanning where it is not required.

• Enable heuristics from the CLI if high security is required using the command
config antivirus heuristic.