The file-frame decompress depth command sets the maximum decompression layer for file blocking.
The undo file-frame decompress depth command restores the default configuration.
| Parameter | Description | Value |
|---|---|---|
decompress-depth |
Specifies the maximum decompression layer. |
The value is an integer ranging from 1 to 8. The default value is 3. |
The FW can filter a decompressed file based on file content if the decompression depth of the file is smaller than or equal to the decompress-depth value. Based on the configured decompression depth, the FW can process files with multiple decompression layers.
The FW detects compressed file by flow and implements decompression and content security detection simultaneously. If a data flow contains threat information, the FW processes the flow based on the content security configuration. If the data flow is secure and the decompression depth of a file exceeds the specified value, the FW will take the action set using the file-frame decompress depth action command for the situation in which the maximum decompression depth is exceeded: