IPS tab
| Automatically detect and inspect the protocol | If this protocol is enabled, the inspection function will automatically apply to discover corresponding traffic that filter rules allow. |
Authentication
| Allow SSL authentication | Enables SSL authentication for the protocol (FTP only). By selecting this option, personal data such as the login and password may be encrypted and therefore, protected. |
| Do not scan the FTP authentication phase | No data scans will be performed |
Size of elements (in bytes)
Imposing a maximum size for elements (in bytes) allows countering buffer overflow attacks.
| Username | Maximum number of characters that a user name can contain. This value must be between 10 and 2048 bytes. |
| User password | Maximum number of characters for the FTP password. This value must be between 10 and 2048 bytes. |
| Path (directory + filename) | Maximum number of characters of the path taken by the program execution, or the path taken in the directory to reach the FTP file. This value must be between 10 and 2048 bytes. |
| SITE command | Maximum number of characters that the SITE command can contain (between 10 and 2048 bytes). |
| Other commands | Maximum number of characters that additional commands can contain (between 10 and 2048 bytes) |
Support
| Disable intrusion prevention | When this option is selected, the scan of the FTP protocol will be disabled and traffic will be authorized if the filter policy allows it |
| Log every FTP query | Enables or disables the reporting of FTP logs. |