What can I do here?
Use this window to configure Threat Emulation settings such as File Type support and Emulation Limits.
Getting Here - Manage & Settings > Blades > Threat Prevention > Advanced Settings > Threat Emulation |
To prevent too many files that are waiting for emulation, configure these emulation limits settings:
If emulation is not done on a file for one of these reasons, the Fail Mode settings for Threat Prevention define if a file is allowed or blocked.
You can configure the maximum amount of time that a file waits for the Threat Emulation Software Blade to do emulation of a file. There is a different setting that configures the maximum amount of time that emails are held in the MTA.
If the file is waiting for emulation more than the maximum time:
The Threat Emulation Engine Settings window opens.
The Threat Emulation Settings window opens.
When a Threat Emulation analysis finds that a file is clean, the file hash is saved in a cache. Before Threat Emulation sends a new file to emulation, it compares the new file to the cache. If there is a match, it is not necessary to send it for additional emulation. Threat Emulation uses the cache to help optimize network performance.
Best Practice - Do not change this setting.
The Threat Prevention Engine Settings window opens.
The Threat Emulation Settings window opens.