content-size (Security Antivirus Sophos Engine)
Syntax
content-size (block | log-and-permit | permit);
Hierarchy Level
[edit security utm default-configuration] [edit security utm feature-profile anti-virus sophos-engine profile profile-name fallback-options]
Description
If the content size exceeds a set limit, the content is either passed or blocked.
When you configure the content-size value, keep in mind that in certain cases, content size is available in the protocol headers, so the max-content-size fallback is applied before a scan request is sent. However, in many cases, content size is not provided in the protocol headers. In these cases, the TCP payload is sent to the antivirus scanner and accumulates until the end of the payload. If the accumulated payload exceeds the maximum content size value, then max-content-size fallback is applied. You might want to set the fallback action to block, in which case such a packet is dropped and a block message is sent to the client.
Options
block—Log the error and deny the trafficlog-and-permit—Log the error and permit the trafficpermit—Permit the traffic
Required Privilege Level
security—To view this statement in the configuration.
security-control—To add this statement to the configuration.
Release Information
Statement introduced in Junos OS Release 11.1.
The [edit security utm default-configuration] hierarchy
level is introduced in Junos OS Release 18.2R1.