Document toolboxDocument toolbox

Version (v1.3) of Check Point Sandblast settings

In the Check Point SandBlast settings dialog it is possible to change the following settings concerning Check Point SandBlast Cloud detection engine:

Maximum file size limit

Specifies the maximum file size for which to perform the check by the engine.

Treat oversize as clean

If this is enabled and the check is skipped because the file is too big, the file is considered “clean” (like if the check was performed and found no problems). If this is disabled, then such file is considered “unclean” (like if the check was performed and found a problem) and the whole package will be quarantined.

Remote access mode

Specifies whether to use HTTP or HTTPS to access the Check Point SandBlast API. HTTP should be used only in internal networks.

IP address or DNS hostname

IP address or hosname of the Check Point SandBlast.

TCP port

TCP port on which the Check Point SandBlast HTTP(S) interface runs.

API key

Sets the API key which will be used when accessing the Check Point SandBlast.

Images

UUID of the system image which will be used to perform the file checks. The current list of available images should be documented HERE.

Test

Using the Test button it is possible to test the access to the Check Point SandBlast using the parameters entered above and verify if it works.

This whole settings dialog looks like this: