Beginning with Symantec Data Loss Prevention 15.5, you can easily customize the content inspection size of files beyond the default maximum of 30 MB. To adjust the content inspection size, configure a server using the Enforce Server administration console at System > Servers and Detectors > Overview > Configure Server, and select the Detection tab for detection servers. You can move the slider on the Detection tab to the value you desire. Depending on the content inspection size you choose, certain advanced settings are automatically adjusted.
You need to edit certain properties files on the Enforce Server and the Discover Server to use this feature if you move the slider beyond 30 MB. In addition, you may need to increase your system memory if you do not have enough to accommodate your preferred content inspection size.
You do not need to edit properties files or increase memory for DLP Agents.
Note: After you edit properties files, you must save the files and restart services to implement your changes.
There are different content inspection file size limit for different channels. The following table lists the different channels that Symantec has tested and the corresponding supported file size limits.
File size limit
Discover Exchange Crawler
Discover File System
Appliance - REST
1.7 GB (Base64 encoded)
Web Prevent FTP
Web Prevent HTTPS/HTTP
See the attached DLP Guidelines for Tuning Large Files.
Read the attached DLP Guidelines for Tuning Large Files.
Guidelines for tuning Symantec Data Loss Prevention to scan large files.