Note: Juniper Networks supports external or internal antivirus (AV) on select devices. Your security device communicates with the external AV scan engine using Internet Content Adaptation Protocol (ICAP).
Policy-based scanning allows you to enhance performance by selecting specific data traffic for AV scanning. To configure policy-based scanning, you must configure AV profiles. Policies use AV profiles to determine which traffic is scanned and what actions are taken as a result of this scan. The maximum number of AV profiles for each vsys (and root) is 9.
This page displays the following information:
Name: Identifies the name of the profile.
Configuration: Click Edit to modify an existing profile or Remove to delete an existing profile.
Click New to create a new profile. See AV Profile Configuration page.
Two read-only predefined AV profiles named ns-profile and scan-mgr may exist on your device. The scan-mgr profile is automatically generated only during an upgrade. The scan-mgr profile migrates the global scan-mgr settings from a previously installed antivirus scanner.
Note: After you have set the AV parameters in a profile, you must apply the AV profile at the policy level. For information on adding AV profiles to a policy, see Policy Configuration.
When you enable AV scanning in a policy, by default the AV scanner examines all traffic (internal AV: FTP, HTTP, POP3, IMAP, and SMTP; external AV: HTTP and SMTP). However, scanning all traffic can have a negative impact on performance if the security device must process a heavy load of traffic. You can select only the protocol(s) that you want the scanner to scan. For example, if you want to scan HTTP Webmail only, select HTTP and Webmail, and clear the checkboxes for all other protocols.