Best Practices for exclusions?

Simon_Weel · August 2023

Over time, more and more exclusions are added to the firewall to bypass services like GAV. The latest one a website to download bitmaps of brick patterns. The bitmaps are gathered in a ZIP file and as such are 'multi-compressed ZIP files' and they are blocked. But I'm not happy with all them exclusions. Those sites are not scanned at all when downloading stuff. What I would like is to allow the download but have it scanned for malware anyway. Don't think that's possible? Another 'solution' would be to allow multi-compressed files, but not ideal either.

My question pretty much boils down to the topic title?

MustafaA · August 2023

Hi @Simon_Weel , have you considered "CATP - Allow file download while awaiting a verdict"?

https://www.sonicwall.com/support/knowledge-base/excluding-file-types-from-capture-atp-block-until-verdict/200508104137633/

Join the Conversation

Best Practices for exclusions?

Answers