[FW1]

["METE EMINAGAOGLU (IT)" <mete.e@FW1-NOSPAMdigiturk.net>]

Hi everyone, I have an interesting problem.

I'm using Checkpoint FW1 4.1 Service Pack 2. I have defined a rule and an object with resource for smtp blocking of the incoming mails for several types of my choice.

The relevant code in objects.C is shown as below where *.vbs and *.mp3 mail attachments are blocked - attached document is stripped (MIME stripped notice):

: (anti_relay_incoming
                        :maxsize (8000)
                        :allowed_chars ("8 bit")
                        :av_setting (none)
                        :av_server ()
                        :color (blue)
                        :type (smtp)
                        :comments ("Mail attachment blocking & mail size restriction")
                        :err_notify (false)
                        :default_server (x.x.x.x)
                        :error_server (x.x.x.x)
                        : (forbiddenfiles
                                : ("{*.vbs,*.mp3}")
                        )
                        : (match_from
                                : ("*")
                        )
                        : (match_to
                                : ("*@mydomain.com")
                        )
                        : (from
                                : ()
                                : ()
                        )
                        : (to
                                : ()
                                : ()
                        )
                        : (user_field
                                : ()
                                : ()
                                : ()
                        )
                        : (content-type
                                : ()
                        )
                        :except_track (
                                :icon (empty)
                        )
                )

It seemed to work correctly, till I discovered this problem.

As well as blocking vbs and mp3, additionally and unintentionally;

The smtp blocking action in the FW also blocks and converts the attached document to stripped txt file ("MIME attachment stripped"),

if,

the attached document's name is too long or name includes special ascii characters. (ie: 84584758fgtrrt_36473gb_xx (10_1).doc or 84584758fgtrrt_36473gb_xx (10_1).dll, etc.)

However, there' s no extra rule in the FW, or no extra definition in the smtp blocking resource object, - imposing any restrictions on the length or char. type of the attached documents' name. 

How can I solve this problem? Any additional definition in the objects.C code? Or any rule in the FW? I need urgent help, please...