The Body Content Types ruleset gives you control of the content in an HTTP response. The Firebox is configured to deny Windows EXE/DLL files. The default proxy action for outgoing HTTP requests (HTTP-Client.Standard) allows all other response body content types.
The body content type is identified by a hexadecimal file signature (also known as a magic number). For example, a ZIP archive is identified by the hexadecimal value 50 4b 03 04. When you enter this value, it must be in the format %0x[Hex data]%. In this example, for a pattern match for a ZIP file, use the value %0x504b0304%*. You can search for these file signatures on the Internet to find the signature you need for a specific content type.
You can add, delete, or modify rules. We recommend that you examine the file types that are used in your organization and allow only those file types that are necessary for your network.
- In the HTTP Proxy Action configuration, select HTTP Response > Body Content Types.
The Rules (simple view) list appears. - Configure the rule action.
For more information, go to Add, Change, or Delete Rules. - To change settings for another category in this proxy, see the topic for that category.
- Save the configuration.
If you modified a predefined proxy action, when you save the changes you are prompted to clone (copy) your settings to a new action.
For more information on predefined proxy actions, go to About Proxy Actions.