Sign In with your
Trend Micro Account
Need Help?
Need More Help?

Create a technical support case if you need further support.

Scan exclusions behavior when wildcard is used in Deep Security

    • Updated:
    • 9 Mar 2015
    • Product/Version:
    • Deep Security 9.0
    • Deep Security 9.5
    • Platform:
    • Linux - Red Hat RHEL 6 64-bit
    • Windows 2008 Datacenter 64-bit
Summary

This article describes the behavior of Deep Security scan exclusions when wildcard is incorporated.

Details
Public

The following table shows the specification for wildcard (*) to work in exclusions list.

Wildcard support in scan exclusions list

Click image to enlarge.

File Extension List Exclusion

  • When there is a wildcard in the File Extension List, exclusion will not work. For example, d*c is created to exclude doc will not work.
  • When there is no wildcard in the File Extension List, wildcard is supported and exclusion works on Thin Agent.

Directory List Exclusion

  • When there is a wildcard in the Directory List, exclusion works on Deep Security Virtual Appliance (DSVA). For example, c:\te*t\ created to exclude c:\test\ will work.
  • When there is no wildcard in the Directory List, exclusion works on Thin Agent.

UNC Exclusion

  • When there is a wildcard in UNC (in Deep Security 9.0 SP1 P4 and Deep Security 9.5 only), exclusion works on DSVA. For example, \\192.168.0.1\t*st.txt created will exclude the test.txt EICAR when accessing 192.168.0.1.
  • When there is no wildcard in UNC, exclusion works on Thin agent.

File List Exclusion

  • When there is a wildcard in the File List, it is only supported without a file path. For example, if c:\test\t*st.txt is created, file test under the c:\test folder cannot be excluded. If you need to add wildcard, t*st should be added.
  • Whether or not wildcard is added in the File List, all exclusion works on DSVA.
Premium
Internal
Rating:
Category:
Configure; SPEC
Solution Id:
1107821
Feedback
Did this article help you?

Thank you for your feedback!

To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.

If you need additional help, you may try to contact the support team. Contact Support


To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.


Need More Help?

Create a technical support case if you need further support.