Skip to main content

Check out Interactive Visual Stories to gain hands-on experience with the SSE product features. Click here.

Skyhigh Security

Configure Error Handler for File Scanning Interruptions in Web Gateway

  1. Last updated
  2. Save as PDF

The Error Handler manages issues that occur during file scanning for viruses, allowing you to either rely on default settings or configure custom responses based on specific error conditions. If an error occurs, the policy execution will stop, and a new trigger will be created. The Error Handler will manage this trigger, and once it is complete, the policy may resume. By using rule sets in the Error Handler section, you gain control over how Web Gateway responds when errors occur during web traffic processing. 

A separate Error Handler Policy tree is available in the user interface, in addition to the standard web policy rule set tree used for web filtering

Access the Error Handler

To access the Error Handler page:

  1. Go to Policy > Web Policy.
  2. In the rule sets panel, select the Error Handler tab.
  3. Expand the Default Error Handler rule set to view the nested rule sets.

    image 3.png
  4. Select a nested rule set to view its rules in the right pane.

For Existing Rule Builder View Users

  1. Existing users will see a splash banner introducing the Error Handler feature, along with a new icon for managing related policies.
  2. Click Get started.

Image 1.png

  1. You can Publish your changes or Discard them. You can also Review changes and publish the changes later or still discard them if needed.


image 2.png

  1. The Default Error Handler includes predefined rule sets for:
  • Anti-Malware Engine Errors: This ruleset identifies failures from anti malware engine processes during file scans. It shows three custom rules.

IMAGE 4.1.png

  • Archive Opener Limits Reached: This ruleset flags events where archive files exceed limits during scanning. It shows three custom rules.
     
    image 5.png
  • Catch All: This rule applies if no other rule is triggered
    The Catch All rule set:
    • Cannot be deleted.
    • Cannot be moved using drag-and-drop.
    • Offers actions such as Continue, Block, or Use Skyhigh Error Handlers.

image 6.png

  • The Default Error Handler operates solely in the error cycle, not the usual request, response, or embedded cycles. As a result, no triggers are shown for these rule sets.

NOTE: The Default Error Handler:

  • Is always present for new users.
  • Cannot be deleted.
  • Can be cloned or edited (except for the Catch All rule).

To add a New Error Handler:

  1. Click New Error Handler in the top-right corner.
  2. A new handler will be created with a default Catch All rule set.

    image 10.png

For Existing Users

Existing web policy users will not automatically see the Default Error Handler. Instead, a Get Started banner will appear if they choose to enable the feature.

  • You can manually add the default rule sets from the library.
  • However, they cannot delete the Default Error Handler or the Catch All rule once added.
  • Because the Default Error Handler is not automatically included in every policy, a banner notification will continue to appear until you activate and publish the handler.
  1. Back to top
  • Was this article helpful?

Recommended articles

  1. Article type
    Topic
  2. Tags
    1. TOPIC ID 862