Archive scan depth
The antivirus scanner will open archives and scan the files inside. Archives within other archives, or nested archives, are also scanned to a default depth of twelve nestings. You can adjust the number of nested archives to which the FortiGate unit will scan with the uncompressed-nest-limit CLI command. Further, the limit is configured separately for each traffic type.
Configuring archive scan depth
For example, this CLI command sets the archive scan depth for SMTP traffic to 5. That is, archives within archives will be scanned five levels deep.
config firewall profile-protocol-options
edit “default”
config http
set uncompressed-nest-limit 5
end
You can set the nesting limit from 2 to 100.