topic About WildFire action in General Topics

About WildFire action

Gregoux — Wed, 10 Jul 2013 13:25:37 GMT

when you create a security profile with fordward action against forward and continue

the what is the action ?

Re: About WildFire action

Phoenix — Wed, 10 Jul 2013 14:36:25 GMT

Hi,

forward — The file is automatically sent to WildFire.

continue-and-forward — A continue page is presented, and the file is sent to WildFire (combines the continue and forward actions).

Note: When you create a file blocking profile with the action continue or continue-and-forward (used for WildFire forwarding), you can only choose the application web-browsing. If you choose any other application, traffic that matches the security policy will not flow through the firewall due to the fact that the users will not be prompted with a continue page.

Hope this helps.

Re: About WildFire action

lleitma987 — Tue, 19 Aug 2014 09:18:24 GMT

Hi,

Thanks for the explanation. However I do have a bit of a funky question.

Let's say I want to do File Blocking on incoming smtp. I'd like to block certain things right away - for example exe's and dll's. The action taken should be "block" in that case.. now, I would also like to upload those things to wildfire to get some insight on the stuff that is trying to crawl in. But when the action is "block" there is nothing sent to WildFire. I guess that's just the way it works, could there be another way to acheive this ?

Thanks in advance!