Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
amrshawky
New Contributor

Download size

i make DLP sensor and map it with a policy to prevent download files large than 500M

after apply, user can not download small or large files

1 REPLY 1
OneOfUs
New Contributor III

Please provide the output of your sensor from the CLI:

 

config dlp sensor
    edit "Large-File"
        config filter
            edit 1
                set name "Large-File-Filter"
                set proto smtp pop3 imap http-get http-post mapi
                set filter-by file-size
                set file-size 51240
                set action log-only
            next
        end
    next
end

 

https://help.fortinet.com/fos60hlp/60/Content/FortiOS/fortigate-security-profiles/DLP/DLP%20examples...

 

You can also watch to flows to get a better idea why it's failing:

 

diagnose debug reset

diagnose debug enable

diagnose debug flow show console enable

diagnose debug flow filter addr <source ip>

diagnose debug flow trace start 100

 

To stop the debug:

diagnose debug disable

diagnose debug reset

Labels
Top Kudoed Authors