How to choose and setup antiviruses, 2 how to choose and setup antiviruses – Kerio Tech Firewall6 User Manual
Page 177
13.2 How to choose and setup antiviruses
177
local network — incoming email at the local SMTP server). Check of outgoing traffic
causes problems with temporarily undeliverable email.
For details, see chapter
•
Object transferred by other than HTTP, FTP, SMTP and POP3 protocols cannot be
checked by an antivirus.
•
If a substandard port is used for the traffic, corresponding protocol inspector will not
be applied automatically. In that case, simply define a traffic rule which will allow this
traffic using a corresponding protocol inspector (for details, see chapter
).
Example: You want to perform antivirus checks of the HTTP protocol at port 8080.
1.
Define the HTTP 8080 service (TCP protocol, port 8080).
2.
Create a traffic rule which will allow this service applying a corresponding protocol
inspector.
Figure 13.1
Traffic rule for HTTP protocol inspection at non-standard ports
Add the new rule before the rule allowing access to any service in the Internet (if
such a rule exists). If the NAT (source address translation) technology is used for
Internet connection, address translation must be set for this rule as well.
Note: A corresponding protocol inspector can be also specified within the ser-
vice definition, or both definition methods can be used. Both methods yield the
same result, however, the corresponding traffic rule is more transparent when the
protocol inspector is defined in it.
13.2 How to choose and setup antiviruses
To select antiviruses and set their parameters, open the Antivirus tab in Configuration →
Content Filtering → Antivirus. Ob this tab, you can select the integrated McAfee module, an
external antivirus, or both.
If both antiviruses are used, each transferred object (downloaded file, an email attachment,
etc.) will be first checked by the integrated McAfee antivirus module and then by the other
antivirus (a selected external antivirus).
Integrated McAfee
To enable the integrated McAfee antivirus, enable Use integrated McAfee antivirus engine in
the Antivirus tab. This option is not available unless the license key for WinRoute includes
a license for the McAfee antivirus or in trial versions. For detailed information about the
licensing policy, read chapter