What can I do here?
Use this window to configure advanced settings for Content Awareness. These are global settings that apply to all Security Gateways with Content Awareness enabled.
Getting Here - Manage & Settings > Blades > Content Awareness > Advanced Settings |
You can select the enforcement option to use if the Content Awareness engine fails during inspection. However, if the engine fails on a connection that is inspected for logging only, the connection is allowed.
This setting is for R80.10 Gateways and higher.
To select the enforcement option
Specify the services that Content Awareness inspects. Content Awareness inspects these services by default:
HTTPS_proxy
on port 8080 HTTP_proxy
on port 8080 ftp
on port 21http
on port 80 https
on port 443smtp
on port 25To add to the list of services that match rules with Content Awareness:
Inspect archives - examine the content of archive files. For example, files with the extension .zip .gz
Enable HTTP inspection on non standard ports for Content Awareness -
Servers usually send HTTP traffic on TCP port 80. Some servers send HTTP traffic on other ports also. By default, this setting is enabled and Content Awareness inspects HTTP traffic on non-standard ports. You can disable this setting and configure Content Awareness to inspect HTTP traffic only on port 80.