content-size
Syntax
content-size (block | log-and-permit);
Hierarchy Level
[edit security utm default-configuration] [edit security utm feature-profile anti-virus juniper-express-engine profile profile-name fallback-options] [edit security utm feature-profile anti-virus kaspersky-lab-engine profile profile-name fallback-options]
Description
If the content size exceeds a set limit, the content is either passed or blocked. The default action is log-and-permit.
When you configure the content-size value, keep in mind that in certain cases, content size is available in the protocol headers, so the max-content-size fallback is applied before a scan request is sent. However, in many cases, content size is not provided in the protocol headers. In these cases, the TCP payload is sent to the antivirus scanner and accumulates until the end of the payload. If the accumulated payload exceeds the maximum content size value, then max-content-size fallback is applied. The default fallback action is log and permit, so you may want to change this option to block, in which case such a packet is dropped and a block message is sent to the client.
Options
block—Log the error and deny the trafficlog-and-permit—Log the error and permit the traffic
Required Privilege Level
security—To view this statement in the configuration.
security-control—To add this statement to the configuration.
Release Information
The Express and Kaspersky antivirus feature is not supported from Junos OS Release 15.1X49-D10 onwards. For previous releases, Statement introduced in Junos OS Release 9.5.
The [edit security utm default-configuration] hierarchy
level is introduced in Junos OS Release 18.2R1.