< Home

Configuring Email Attachment Control

Mail attachment control restricts the attachment size and number of files attached to email.

Prerequisites

You are familiar with Anti-Spam mechanism.

Context

The mail attachment control function control the attachment size and the number of files attached to email and prevent confidential information from being leaked through email.

Attachment size checks can be implemented in both the sending and receiving directions.

  • If the email is encapsulated in SMTP messages, the FW performs mail attachment control in the mail sending direction. As shown in Figure 1, if you enable the mail attachment control in the sending direction between the trust zone and the dmz, the FW prevents intranet users from sending confidential information through email.

    Figure 1 Mail server deployed on the intranet

  • If the email is encapsulated in POP3 or IMAP messages, the FW performs mail attachment control in the mail receiving direction. As shown in Figure 2, if you enable the mail attachment control in the sending direction between the trust zone and the untrust zone, the FW protects the intranet against viruses and avoids over-consumption of bandwidth resources when downloading attachments.

    Figure 2 Mail server deployed on the Internet

If intranet users send or receive email through SMTP, POP3, or IMAP, the FW performs the mail attachment control.

Procedure

  1. Choose Object > Security Profiles > Email Filtering.
  2. Choose Email Content Filtering tab.
  3. Click Add.
  4. Set the name and description of the mail content filtering profile.

    Parameter

    Description

    Name

    Name of the mail content filtering profile. The name, which must be unique, is displayed in the parameter list of mail filtering during the configuration of security policies.

    Description

    Description of the mail content filtering profile. The description must clearly indicate the function of the profile to make profiles easy to find and maintain. Example of the profile description: The mail filtering policies for the trust -> dmz interzone.

  5. Set the parameters in Attachment Size and Quantity Control.
    1. Click Attachment Size and Quantity Control.
    2. Select Maximum Sent Attachments, Maximum Received Attachments, Maximum Sent Attachment Size, or Maximum Received Attachment Size, and enter the value.
    3. Then select an action in Action.

      Parameter

      Description

      Alarm

      Allows email through but generates an alarm.

      Block

      Blocks email.

  6. Click OK.
  7. Reference the mail filtering profile in the security policy. For details on how to configure security policies, see Configuring a Security Policy Using the Web UI.
  8. Click Submit.

    The configuration does not take effect immediately after you create or modify the configuration file. You must click Submit on the upper right corner of the current page to activate the configuration. To save time, you can submit the configuration after all the operations on the profile are complete.

Follow-up Procedure

Check or release the reference between the security policy and profile.

  1. To check for profile that is referenced by security policies, click View under References in the list of profile.

  2. To release the reference between the security policy and profile, choose the security policy and click Release.

    Click Release All, you can release all the references.

Parent Topic: Configuring Mail Filtering
Copyright © Huawei Technologies Co., Ltd.
Copyright © Huawei Technologies Co., Ltd.
< Previous topic