Analyzing files tab

Maximum size for antivirus and sandboxing analysis (KB)

This option corresponds to the maximum size of files that will be scanned. The default size depends on the firewall model: S model firewalls (SN160(W), SN210(W) and SN310): 4000 KB. M model firewalls (SN510, SN710, SNi20 and SNi40): 4000 KB. L model firewalls (SN910): 8000 KB. XL model firewalls (EVA1, EVA2, EVA3,EVA4, EVAU, SN2000, SN2100, SN3000, SN3100, SN6000 and SN6100): 16000 KB.

WARNING

When manually defining a size limit for analyzed data, ensure that all values are coherent. The total memory space corresponds to a common space for all the resources reserved for the Antivirus service. If you define the size limit for analyzed data on POP3 as 100% of the total size, no other files can be analyzed at the same time.

Action on messages

This zone defines the behavior of the antivirus module when certain events occur.

When a virus is detected	This field contains 2 options. By selecting “Block”, the analyzed file will not be sent. By selecting “Pass”, the antivirus will send the file in its original form.
When the antivirus scan fails	This option defines the behavior of the antivirus module if the analysis of the file it is scanning fails. Example: The file could not be scanned as it has been locked. If Block has been specified, the file being scanned will not be sent. If Pass without analyzing has been specified, the file being scanned will be sent without being checked.
When data collection fails	This option defines the behavior of the antivirus module when certain events occur. It is possible to Block traffic when information retrieval fails, or Pass without analyzing.