Best Practices for exclusions?
Simon_Weel
Enthusiast ✭✭
Over time, more and more exclusions are added to the firewall to bypass services like GAV. The latest one a website to download bitmaps of brick patterns. The bitmaps are gathered in a ZIP file and as such are 'multi-compressed ZIP files' and they are blocked. But I'm not happy with all them exclusions. Those sites are not scanned at all when downloading stuff. What I would like is to allow the download but have it scanned for malware anyway. Don't think that's possible? Another 'solution' would be to allow multi-compressed files, but not ideal either.
My question pretty much boils down to the topic title?
Category: Firewall Security Services
Tagged:
0
Answers
Hi @Simon_Weel , have you considered "CATP - Allow file download while awaiting a verdict"?
https://www.sonicwall.com/support/knowledge-base/excluding-file-types-from-capture-atp-block-until-verdict/200508104137633/