This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
cryptochrome
Contributor
‎2023-09-11 08:30 AM

Threat Emulation: File exceeded size limit

Hello,

we are testing Harmony Connect right now and we can't download larger files. Looking into the logs, I find a "File exceeded size limit" error message, coming from the Threat Emulation blade. It's in the "detect" category. 

I don't see an option anywhere to control this behavior. What's the best approach here? My workaround was to exclude the sites from SSL inspection, which does work, of course. But that shouldn't have to be the solution.

I would have expected an option to fine tune the blade configurations, but all I see is a profiles page with zero options to change anything. 

Thanks

 

Labels
0 Kudos
4 Replies
PhoneBoy
Admin
Admin
‎2023-09-11 10:46 AM

On our regular Quantum gateways, the default limit for emulation is 15mb and can be adjusted to, I believe, 100mb.
Possible the TAC may be able to assist with this: https://help.checkpoint.com 

0 Kudos
cryptochrome
Contributor
‎2023-09-11 03:36 PM
In response to PhoneBoy

Thanks. What puzzles me is that there seems to be no way at all to influence this. I can't even tell it to skip files larger than the limit. It just blocks them - with no notice to the user (increasing ticket load). 

I was hoping maybe someone from Check Point reads this and share some comments. 

0 Kudos
PhoneBoy
Admin
Admin
‎2023-09-11 03:40 PM
In response to cryptochrome

The TAC may actually have to make the configuration change on your behalf.

0 Kudos
the_rock
Legend
Legend
‎2023-09-11 04:17 PM
In response to cryptochrome

I believe one of our customers had this issue and it needed TAC case, so support could fix this for them on back end.

Andy

0 Kudos
Upcoming Events

    CheckMates Events