Filter
Top Products
App Control Use Cases
695
SonicOS 5.8.1 Administrator Guide
Next, create a policy that references the match object, as shown below. This policy blocks the
file transfer and resets the connection. Enable Logging is selected so that any attempt to
transfer a file containing the UTF-16 encoded keyword is logged.
A log entry is generated after a connection Reset/Drop. An example of a log entry is shown
below, including the Message stating that it is an Application Control Alert, displaying the Policy
name and the Action Type of Reset/Drop.
Blocking FTP Commands
You can use Application Control to ensure that your FTP server is read-only by blocking
commands such as put, mput, rename_to, rename_from, rmdir, and mkdir. This use case
shows an match object containing only the put command, but you could include all of these
commands in the same match object.