How to create a file extension exclusion from Gateway Antivirus inspection
Description
This article show how to create exclusions for file extension from a Gateway Antivirus inspection or block
Resolution for SonicOS 7.X
This release includes significant user interface changes and many new features that are different from the SonicOS 6.5 and earlier firmware. The below resolution is for customers using SonicOS 7.X firmware.
- Login to the firewall
- Navigate to OBJECT | Match Objects
- Click +Add
- Insert a name
- Match Object Type as Custom Object. This method will be more broadly to match the traffic with the given values.
- Content: Insert the file extension. In this example, we are using .xlsm
- Click + Add
- Click Save.
- Navigate to POLICY | Rules and Policies | App Rules
- Click + Add
- Insert a name to the AppRule.
- Policy type as Custom Policy
- Match Object Included: Select the Match Object created.
- Action Object: Bypass GAV
- Connection Side as Both
- Direction as Both
- Click OK
Now the files with the extension configured should bypass the GAV inspection
Resolution for SonicOS 6.5
This release includes significant user interface changes and many new features that are different from the SonicOS 6.2 and earlier firmware. The below resolution is for customers using SonicOS 6.5 firmware.
- Login to the Firewall
- Navigate to MANAGE | Objects | Match Objects
- Click Add
- Insert a name
- Match Object Type as Custom Object. This method will be more broadly to match the traffic with the given values.
- Content: Insert the file extension. In this example, we are using .xlsm
- Click Add
- Click OK.
- Navigate to MANAGE | Rules | App Rules
- Click Add
- Insert a name to the AppRule.
- Policy type as Custom Policy
- Match Object: Select the Match Object created.
- Action Object: Bypass GAV
- Connection Side as Both
- Direction as Both
- Click OK
Now the files with the extension configured should bypass the GAV inspection
Related Articles
Categories
not finding your answers?