: Edit the Enterprise DLP Data Filtering Settings
Focus
Focus

Edit the Enterprise DLP Data Filtering Settings

Table of Contents

Edit the Enterprise DLP Data Filtering Settings

Edit the data filtering settings to specify the actions the managed firewall takes on traffic scanned to the DLP cloud service.
Configure the network settings for files scanned to the
Enterprise Data Loss Prevention (E-DLP)
cloud service and specify the actions the firewall using
Enterprise DLP
takes if the data filtering settings are exceeded.
  1. Select
    Device
    Setup
    DLP
    and select the
    Template
    associated with the managed firewalls using
    Enterprise DLP
    .
  2. Edit the Data Filtering Settings.
    1. Specify the
      Max Latency (sec)
      for a file upload before an action is taken by the firewall.
      For inspection of files greater than 20 MB, Palo Alto Networks recommends setting the max latency to greater than
      60
      seconds.
    2. Specify the
      Action on Max Latency
      (
      Block
      or
      Allow
      ) the firewall takes if no verdict was received for a file upload due to the upload time exceeding the
      Max Latency
      .
      Selecting
      Block
      applies only to Enterprise DLP data filtering profiles configured to block files. This setting doesn’t impact
      Enterprise DLP
      data filtering profiles configured to alert when traffic containing sensitive data is scanned.
    3. Specify the
      Max File Size (MB)
      to enforce a maximum file size for files uploaded to the DLP cloud service for inspection.
    4. Specify the
      Action on Max File Size
      (
      Block
      or
      Allow
      ) the firewall takes if no verdict was received for a file upload due to the file size being larger than the configured
      Max File Size
      .
      Selecting
      Block
      applies only to Enterprise DLP data filtering profiles configured to block files. This setting doesn’t impact
      Enterprise DLP
      data filtering profiles configured to alert when traffic containing sensitive data is scanned.
      (
      DLP 3.0.3 only
      ) Increasing the max file size for the Enterprise DLP data filtering settings to 21 MB or greater when Panorama has the Enterprise DLP 3.0.3 plugin installed is supported only from the Panorama CLI.
      admin>
      configure
      admin#
      set template <template_name> config shared dlp-settings max-file-size <1 - 100>
    5. Check (enable)
      Log Files Not Scanned
      to generate an alert in the data filtering log when a file can’t be scanned to the DLP cloud service.
    6. Click
      OK
      to save your configuration changes.
  3. Edit the Enterprise DLP Action on Error Setting to configure the action the firewall takes if any error is encountered during non-file traffic data upload.
  4. Commit and push your configuration changes to your managed firewalls using
    Enterprise DLP
    .
    While a performing a
    Commit and Push
    is supported, it isn’t recommended for
    Enterprise DLP
    configuration changes and requires you to manually select the impacted templates and managed firewalls in the Push Scope Selection.
    1. Select
      Commit
      Commit to Panorama
      and
      Commit
      your configuration changes.
    2. Select
      Commit
      Push to Devices
      and
      Edit Selections
      .
    3. Select
      Device Groups
      and
      Include Device and Network Templates
      .
    4. Click
      OK
      .
    5. Push
      your configuration changes to your managed firewalls.

Recommended For You