File extensions added to "File Extensions Not to Scan" are being sent to AV Scanner
Applies to
- Data ONTAP 8
- ONTAP 9
- AV Scanner
- VSCAN
Issue
Policy is On and the extensions “jpg” and ”txt” are added to the exclude list:
user1-c1::vserver vscan on-access-policy*> show -vserver vserver_1 -policy-name oap1 -instance
Vserver: vserver_1
Policy: oap1
Policy Status: on
Policy Config Owner: vserver
File-Access Protocol: CIFS
Filters: scan-mandatory Max File Size Allowed for Scanning: 2GB
File Paths Not to Scan: -
File Extensions Not to Scan: “jpg”, ”txt” <-- There are double quotes around it
File Extensions to Scan: *
Scan Files with No Extension: true
Packet traces display that the controller is sending the asdffasdf.txt
file to the AV server for scanning:
10.61.92.237 Read 10.216.54.12 VSCAN2 0xdd80 Scan Request: cifstestasdffasdf.txt
10.216.54.12 Write 10.61.92.237 VSCAN2 0xe544
Scan Reply: File Is Clean: cifstestasdffasdf.txt