Advanced FTP and HTTP Quotas

This quota check ensures that users are not overloading the file system with unhandled UserCheck incidents using FTP or HTTP transmissions. If a user has so many captured HTTP posts, or large FTP upload attempts, that the quota per user is exceeded, DLP handles the issue.

To change quota behavior:

1. On the DLP Gateway, open the $FWDIR/dlp/conf/dlp.conf file.

2. Find the HTTP or the FTP section, and this parameter: save_incident_quota_percentage

   The default value is 85. This is 85% of the file system, for this type of transmission. The value range is 0 to 100. If zero, no quota is enforced.

3. Change this value to change the threshold that initiates the cleanup.

   When disk usage is greater than this value, incidents are not saved.

   >	Best Practice If you decrease this value, decrease the age of FTP and HTTP incidents before deletion, to ensure that you have enough disk space to save incidents: $FWDIR/conf/mail_security_config file > dlp_delete_redundant_files_age_group1_files parameter

4. Save dlp.conf and install the policy on the DLP Gateway.