When
a data profile contains match criteria that you want to both allow
and block, be aware that the sessions in which the matched traffic
is inspected matters. For example,
File1
matches
criteria in the Primary rule you want to allow and
File2
matches
criteria in the Secondary rule you want to block. Both of these
files are attached to a single email. In this scenario, the DLP
cloud service blocks the email both files are attached to because
File2
has
match criteria that is blocked. However, if each file is attached
to separate emails or if the files are attached to the same email one
at a time, the appropriate action is taken for each file.