Configuring Symantec Protection Engine to handle malformed container files
This topic explains the options that are configured using the Core server with user interface mode. to work with the Core server only mode.
Malformed container files are unscannable in Symantec Protection Engine. If you want to protect your network from threats of malformed container files, configure Symantec Protection Engine to handle unscannable malformed container files.
To configure Symantec Protection Engine to handle malformed container files
In the console on the primary navigation bar, click Policies.
In the sidebar under Views, click Filtering.
In the content area on the Container Handling tab, under Malformed Container Handling, select the Enable Malformed Container Handling check box.
Under Enable Malformed Container Handling, select one of the following to specify how Symantec Protection Engine should handle malformed files:
Generates a log entry.
Blocks the malformed container files and generates a log entry.
By default, Symantec Protection Engine blocks malformed container files.
Deletes the malformed container files and generates a log entry.
The options are available only if the Enable Malformed Container Handling is enabled.
The Quarantine option is available only if Enable Malformed Container Handling is enabled and quarantine server is configured in Symantec Protection Engine.
On the toolbar, select one of the following options:
Saves your changes.
Use this option to continue making changes in the console until you are ready to apply them.
Applies your changes.
Your changes are not implemented until you apply them.