Note: This feature is supported on devices that perform internal antivirus (AV) scanning.
AV scanning requires that you load a database of AV patterns onto the security device and periodically update the pattern file. To do so, you must register the device and purchase an AV pattern license key, which includes a subscription for the AV signature service. For the life of the subscription, you can load the current version of the database and update it as newer versions become available.
If you have installed a license key for AV scanning, you can edit the following options to configure the Scan Manager:
Antivirus Pattern File: Displays the current database of AV patterns.
Pattern Update Server: Enter the path of the pattern update URL for the AV scan engine show below:
|
AV Scan Engine |
AV Pattern Update URL |
|
Juniper-Kaspersky Scan Engine |
http://update.juniper-updates.net/av/5gt |
|
Trend Micro Scan Engine |
http://5gt-p.activeupdate.trendmicro.com:80/activeupdate/server.ini |
Auto Pattern Update: Select this checkbox to automatically update the AV pattern file from an Pattern Update Server at user-defined intervals.
Interval: Enter a value (in minutes) between 10 and 10080 minutes (10080 = 168 hours = 7 days = 1 week).
Update Now: Enter the URL for the Pattern Update Server in the Pattern Update Server field and click Update Now to manually update the AP pattern file immediately.
Maximum file size: Enter a value between 10 to 10,000 KB to configure the maximum content size for a single message that the internal AV scanner scans for virus patterns.
Drop: Select this option to drop the message content without checking for viruses if the total content of an incoming message exceeds the configured Maximum File Size.
Bypass: Select this option to pass traffic without examining it if the total content of an incoming message exceeds the configured Maximum File Size.
Note: The default 10 megabytes of decompressed file content is per message and not the total number of concurrent messages being examined. If the Deep Inspection (DI) feature is also enabled, Juniper Networks recommends configuring a Maximum file size value of 6 MB.
Maximum Concurrent Messages: Enter a value between 1 and 16 to configure the maximum number of concurrent messages to scan for virus patterns.
Drop: Select this option to drop the message content without checking for viruses if the total number of concurrent messages exceeds the configured Maximum Concurrent Messages.
Bypass: Select this option to pass traffic without examining it if the total number of concurrent messages exceeds the configured Maximum Concurrent Messages.
The default values indicate that the AV scanner can examine a maximum of 256 concurrent messages and 10 megabytes of decompressed file content per message at any specific time.