FortiGuard Application Control

Application Control (AC) protects managed desktops and servers by allowing or denying network application usage based on policies established by the network administrator. Enterprise applications, databases, web mail, social networking applications, IM/P2P, and file transfer protocols can all be identified accurately by sophisticated detection signatures. Application control is integral to the Fortinet Intrusion Prevention System. IPS and Application Control signature updates are provided quickly via the global FortiGuard distribution network.

The table below lists the latest top applications in terms of popularity in usage.

Application	Category
Google.Safe.Search.Off	Web
HTTP.Proxy	Internet Proxy
Twitter	Instant Messaging
Ultrasurf	Internet Proxy
Yahoo.Mail.Messenger	Instant Messaging
HTTP.Video	Video/Audio Streaming
Google.Web.Talk	Instant Messaging
Media.Player.Video.HTTP	Video/Audio Streaming
YouTube.Video.Embedded	Video/Audio Streaming
Photobucket	Video/Audio Streaming

The table below lists the application categories, its descriptions and some common examples.

Application Categories	Descriptions	Most Common Applications
Instant Messaging (im)	The im category consists of IM (Instant Messaging) software and online chatting applications, which can establish real-time text-based communication between two or more people over network.	Facebook.Chat Google.Talk Google.Web.Talk QQ Twitter Yahoo.Mail.Messenger
Peer-to-peer (p2p)	The p2p category consists of P2P (Peer to Peer) applications and associated P2P protocols, which can establish a P2P network to provide fast data sharing.	Ares Edonkey QQ.Download SinaTV Skype Thunder
Voice over Internet Protocol (voip)	The voip category consists of voice communication software using VoIP (Voice over Internet Protocol) technologies (e.g. SIP, H.323, etc.), which can deliver voice over network.	H.323 IAX2 JustVoIP Sightspeed SIP.TCP SIP.UDP
File Transfer (file-transfer)	The file-transfer category consists of file transfer applications and associated protocols, which enable two or more people to exchange files via network.	HTTP.Compress HTTP.Flash HTTP.HTML HTTP.Image HTTP.Script HTTP.XML
Video/Audio Streaming (media)	The media category consists of stream video/audio applications and associated protocols, which can provide online video/audio.	HTTP.Video Media.Player.Video.HTTP Photobucket Stream.Media YouTube.Download YouTube.Video.Embedded
Internet Proxy (proxy)	The proxy category consists of proxy software and websites, which can make indirect network connections to other networks and bypass the firewall policy.	Freegate.Searching Gbridge Gpass HTTP.Proxy Paradial.RealTunnel Ultrasurf
Remote Access (remote-access)	The remote-access category consists of remote management software and associated protocols, which can be used to login and operate remote machine.	Gotomypc LogMeIn MS.RDP.Request Netviewer Teamviewer VNC
Games (game)	The game category consists of network games including internet games.	MSN.Game Pogo Sina.Game Steam Valve.Games Warcraft
Web Browser Toolbar (toolbar)	Third-party toolbars for browsers are best known for adding functionality and ease-of-use options to the end user.	AOL.Toolbar EBay.Toolbar Google.Toolbar Mcafee.SiteAdvisor Stumbleupon.Toolbar Yahoo.Toolbar
Database (database)	The database category consists of database applications.	DRDA GDS.DB MSSQL MySQL Oracle Postgres
Web-based email (web-mail)	Webmail (or Web-based email) is an email service intended to be primarily accessed via a web browser.	AIM.Webmail Gmail Hotmail Hotmail.Attachment Yahoo.Mail.Attachment Yahoo.Webmail
Web (web)	The web category consists of some websites and browser-based applications.	Apache Facebook Google.Safe.Search.Moderate.Level Google.Safe.Search.Off HTTP.BROWSER MS.IIS
Protocol Command (protocol-command)	The protocol-command category consists of specific commands of some protocols.	FTP.DELETE FTP.GET FTP.PUT HTTP.Method POP3.Command SMTP.Command
Internet Protocol (ip-protocol)	The Internet Protocol (IP) is a protocol used for communicating data across a packet-switched internetwork using the Internet Protocol Suite, also referred to as TCP/IP.	ESP GRE HTTP.NTLM ICMP IPv6 RSVP
Network Services (network-service)	The network-service category consists of the application layer protocols over TCP or UDP.	Atom.Publishing.Protocol DNS DNS.Dynamic.Update NTP SOAP SSL
Enterprise Applications (business)	The business category consists of the enterprise applications, which are often used in the daily work of a company.	IBM.Sametime MS.Office.Live Salesforce Schwab Scottrade Tdameritrade
System Update (update)	The update category refers to the self-upgrade function of a particular software or system, which could be automatic or scheduled.	Adobe.Update Chrome.Update Firefox.Update MS.Windows.Update NOD32.Update Symantec.AV.Update
Network Backup (backup)	The backup category consists of the backup software, especially refers to the network backup applications.	Carbonite Ibackup Rsync Sosbackup NOD32.Update Symantec.AV.Update

To find the applications or group of applications and learn more about its nature and risks, Application Control Encyclopedia.

For the complete list of applications supported by the FortiGuard Application Control, Application Control List.

To request a new or revision of coverage on an application, Application Control Submission Form.