Hi
How to block download/upload binary files in zip?
How many layer of zip the engine will unzip for scanning?
thank
Best answer by ejang
View original
Userlevel 2
+1
What feature are you referring to? DLP or TP?
Hi Ejang
TP and SWG. For SWG, I will want to block any binary files in compression format such as zip, arj, etc.
thank
Userlevel 2
+1
First, you need to create a file profile that includes all binary files. Then, create a DLP profile with the file profile. Finally, create a RTP policy with the DLP profile. Please see the sample below.
Hi Ejang
I am using true filetype for blocking. Binary in zip didnt hit this RTP. Is this rule correct?
Userlevel 2
+1
You need to use DLP profile, not activity constraint.
- create a file profile including binary file types
https://docs.netskope.com/en/netskope-help/data-security/real-time-protection/profiles/adding-a-file-profile/ - create a dlp profile and select the file profile
https://docs.netskope.com/en/netskope-help/data-security/data-loss-prevention/dlp-profiles/create-a-custom-dlp-profile/ - Use the dlp profile in RTP policy.
Reply
Login to the community
If you haven't already registered, now is a good time to do so. After you register, you can post to the community, receive email notifications, and lots more. It's quick and it's free! Create an account
Login with SSO
Employee Partneror
Enter your username or e-mail address. We'll send you an e-mail with instructions to reset your password.