In the Profile Settings section, click the drop-down
and select the file blocking profile you configured. In this case,
the profile name is
If no security profiles have been previously defined, select
. You will then see the
list of options to select the security profiles.
To test your file blocking configuration, access a client
PC in the trust zone of the firewall and attempt to download an
.exe file from a website in the untrust zone. A response page should
to download the file.
You can also set other actions, such as alert or block, which will
not provide a continue page to the user. The following shows the default
response page for File Blocking:
). This allows
you to provide more information to users when they see a response
page. You can include information such as company policy information and
contact information for a Helpdesk.
When you create a file blocking profile with the action
continue, you can only choose the application web-browsing. If you choose
any other application, traffic that matches the security policy
will not flow through the firewall due to the fact that the users
will not be prompted with a continue page. Also, if the website
uses HTTPS, you will need to have a decryption policy in place.
may want to check your logs to confirm what application is being
used when testing this feature. For example, if you are using Microsoft
SharePoint to download files, even though you are using a web-browser
to access the site, the application is actually
. You may want to set
the application type to Any for testing.