The file-reputation exception hash command configures a file hash value as a file reputation exception.
The undo file-reputation exception hash command deletes a file hash value from the file reputation exceptions.
| Parameter | Description | Value |
|---|---|---|
| hash | Specifies a file hash value. | Currently, the value is an MD5 value. The MD5 value is a string of 32 characters consisting of digits (0 to 9), lowercase letters (a to f), and uppercase letters (A to F). |
| all | Indicates all file hash values. | - |
Usage Scenario
By default, no file reputation exception is configured.
If you consider that a malicious file is false positive or you want to permit a file, you can run the file-reputation exception hash command to configure the hash value (currently the MD5 value) of the file as a file reputation exception. File reputation exceptions take precedence over file reputation detection. If the FW detects a malicious file and the malicious file matches a file reputation exception, the file is still permitted.
Precautions
File reputation exceptions take effect globally.
The file hash values in sandbox detection logs can be directly configured as file reputation exceptions.