Print Download Documentation Send Feedback

Previous

Next

Threat Emulation Supported File Types

What can I do here?

Use this window to select the file types that the Security Gateway sends for emulation.

Getting Here

Getting Here - Security Policies Threat Prevention > Policy > Threat Tools > Profiles > Profile > Threat Emulation > General > File Types > Process specific file type families > Configure > Threat Emulation Supported File Types

File Type Settings

You can configure the Threat Emulation Action and Emulation Location for each file type in the Threat Prevention profile.

To configure the file type settings for a profile:

  1. In SmartConsole, select Security Policies > Threat Prevention.
  2. From the Threat Tools section, click Profiles.
  3. Double-click the Threat Prevention profile.
  4. From the navigation tree, select Threat Emulation.
  5. From the File Types section, select Process specific file types families.
  6. Click Configure.

    The Threat Emulation Supported File Types window opens.

  7. To change the emulation action for a file type, click Action and select one of these options:
    • Inspect - Threat Emulation opens these files.
    • Bypass - Files of this type are considered safe and the Software Blade does not do emulation for them.
  8. To change the emulation location for a file type, click Emulation location and select one of these options:
    • According to the gateway - The Emulation location settings that are defined in the Gateway Properties window are used for these files.
    • Locally - Emulation for these file types is done on the Emulation appliance.
    • ThreatCloud - These file types are sent to the ThreatCloud for emulation.
  9. Install Policy.