IMPORTANT SNS 3.x versions have reached End of Maintenance since July 1st, 2024. We recommend that you update your SNS firewalls to a version with maintenance to guarantee the protection of your infrastructure.
IPS tab
Automatically detect and inspect the protocol
If this protocol has been enabled, it will automatically be used for discovering corresponding packets in filter rules.
Authentication
Allow SSL authentication
Enables SSL authentication for the protocol (FTP only). By selecting this option, personal data such as the login and password may be encrypted and therefore, protected.
Do not scan the FTP authentication phase
No data scans will be performed.
Size of elements (in bytes)
Imposing a maximum size for elements (in bytes) allows countering buffer overflow attacks.
Username
Maximum number of characters that a user name can contain. This value must be between 10 and 2048 bytes.
User password
Maximum number of characters for the FTP password. This value must be between 10 and 2048 bytes.
Path (directory + filename)
Maximum number of characters of the path taken by the program execution, or the path taken in the directory to reach the FTP file. This value must be between 10 and 2048 bytes.
SITE command
Maximum number of characters that the SITE command can contain (between 10 and 2048 bytes).
Other commands
Maximum number of characters that additional commands can contain (between 10 and 2048 bytes).
Support
Disable intrusion prevention
When this option is selected, the analysis of the FTP protocol will be disabled and traffic will be allowed if the filter policy allows it