Objects > Security Profiles > File Blocking
You can attach a File Blocking profile to a Security policy rule (Policies > Security) to block users from uploading or downloading specified file types or to generate an alert when a user attempts to upload or download specified file types.
For the best security, apply the predefined
strictprofile. If you need to support critical applications that use a file type which the
strictprofile blocks, clone the
strictprofile and make only the file type exceptions you need. Apply the cloned profile to a Security Policy rule that restricts the exception to only the sources, destinations, and users that need to use the file type. You can also use
Directionto restrict the exception to uploading or downloading.
If you don’t block all Windows PE files, send all unknown files to WildFire for analysis. For user accounts, set the Action to
continueto help prevent drive-by downloads where malicious web sites, emails, or pop-ups cause users to inadvertently download malicious files. Educate users that a Continue prompt for a file transfer they didn’t knowingly initiate may mean they are subject to a malicious download.
The following tables describe the file blocking profile settings.
File Blocking Profile Settings
Enter a profile name (up to 31 characters). This name appears in the list of file blocking profiles when defining security policies. The name is case-sensitive and must be unique. Use only letters, numbers, spaces, hyphens, and underscores.
Enter a description for the profile (up to 255 characters).
Select this option if you want the profile to be available to:
Disable override (
Select this option to prevent administrators from overriding the settings of this File Blocking profile in device groups that inherit the profile. This selection is cleared by default, which means administrators can override the settings for any device group that inherits the profile.
Define one or more rules to specify the action taken (if any) for the selected file types. To add a rule, specify the following and click