set threat-prevention threat-emulation policy
Description
Configures policy settings for the Threat Emulation blade (where applicable).
Syntax
|
|
] [ protocol-http <protocol-http> ] [ protocol-mail <protocol-mail> ] [ connection-handling-mode-http <connection-handling-mode-http> ] [ connection-handling-mode-smtp <connection-handling-mode-smtp> ]
Parameters
|
Parameter |
Description |
|---|---|
|
connection-handling- mode-http |
Indicates the strictness mode of the Threat Emulation engine over HTTP: Back-ground - connections are allowed while the file emulation runs (if needed), Hold - connections are blocked until the file emulation is completed Options: background, hold |
|
connection-handling- mode-smtp |
Indicates the strictness mode of the Threat Emulation engine over SMTP: Back-ground - connections are allowed while the file emulation runs (if needed), Hold - connections are blocked until the file emulation is completed Options: background, hold |
|
detect-mode |
Indicates if the Threat Emulation blade is set to 'Detect Only' mode Type: Boolean (true/false) |
|
interfaces |
Indicates the source zones for inspected incoming files: External, External and DMZ or all interfaces Options: all, external, external-dmz |
|
mode |
Indicates if the Threat Emulation blade is active Type: Boolean (true/false) |
|
protocol-http |
Indicates if file emulation will be performed on all configured ports of HTTP traffic Type: Boolean (true/false) |
|
protocol-mail |
Indicates if file emulation will be performed on mail traffic (SMTP) Type: Boolean (true/false) |
|
scope |
Indicates the source of scanned file: scan incoming files, or scan both incoming and outgoing files Options: incoming, incoming-and-outgoing |
Example
|
|
