Analyzing files tab
|Maximum size for antivirus and sandboxing analysis (KB)||The default size depends on the firewall model:
When a size limit is manually set for analyzed data, ensure that all values are consistent, as the total memory space corresponds to the resources reserved for all antivirus services. If you define the size limit for analyzed data on SMTP as 100% of the total size, no other files can be analyzed at the same time.
Action on messages
This zone defines the behavior of the antivirus module when certain events occur.
|When a virus is detected||This field contains two options: "Pass" and "Block". By selecting “Block”, the analyzed file will not be sent. By selecting Pass, the antivirus will send the file event it has been found to be infected.|
|When the antivirus scan fails||The option Pass without analyzing defines the behavior of the antivirus module if the analysis of the file it is scanning fails.
|When data collection fails||This option defines the behavior of the antivirus module when certain events occur.