You are here: Webhelp > Object > Data Security > File Filter

File Filter

The file filter function checks the files transported through HTTP, FTP, SMTP, IMAP, POP3 protocols and control them according to the file filter rules.

  • Be able to check and control the files transported through GET and POST methods of HTTP, FTP, SMTP, IMAP, and POP3.
  • Support file type filter conditions.
  • Support block, log, and permit actions.

After you bind the file filter profile to a policy rule, the system will process the traffic that matches the rule according to the profile.

Creating File Filter Rule

Use the file filter rule to specify the protocol that you want to check, the filter conditions, and the actions.

To create a file filter rule:

  1. Select Object > Data Security > File Filter.
  2. Click New.
  3. Click OK.

Configuring Decompression Control Function

After configuring the decompression control function, StoneOS can decompress the transmitted compressed files, and can handle the files that exceed the max decompression layer as well as the encrypted compressed files in accordance with the specified actions. This function supports to decompress the files in type of RAR, ZIP, TAR, GZIP, and BZIP2.

To configure the decompression control function, take the following steps:

  1. Select Object > Data Security > File Filter.
  2. At the top-right corner, click Compression Configuration.
  3. Click OK.
For compressed files containing docx, pptx, xlsx, jar, and apk formats, when Exceed Action is specified as Reset Connection, the maximum compression layers should be added one more layer to prevent download failure.

Viewing File Filter Logs

To view the file filter logs, refer to File Filter Log.