Page 266 / 428
Scroll up to view Page 261 - 265
Configuring VStream Antivirus
252
Check Point ZoneAlarm User Guide
The ZoneAlarm router will process rule 1 first, passing outgoing SMTP traffic from the
specified IP address, and only then it will process rule 2, scanning all outgoing SMTP
traffic.
The following rule types exist:
Table 68: VStream Antivirus Rule Types
Rule
Description
Pass
This rule type enables you to specify that VStream Antivirus should not scan
traffic matching the rule.
Scan
This rule type enables you to specify that VStream Antivirus should scan traffic
matching the rule.
If a virus is found, it is blocked and logged.
Adding and Editing VStream Antivirus Rules
To add or edit a VStream Antivirus rule
1.
Click
Antivirus
in the main menu, and click the
Policy
tab.
Page 267 / 428
Configuring VStream Antivirus
Chapter 12: Using VStream Antivirus
253
The
Antivirus Policy
page appears.
2.
Do one of the following:
•
To add a new rule, click
Add Rule
.
•
To edit an existing rule, click the Edit icon next to the desired rule.
The
VStream Policy Rule Wizard
opens, with the
Step 1: Rule Type
dialog box
displayed.
Page 268 / 428
Configuring VStream Antivirus
254
Check Point ZoneAlarm User Guide
3.
Select the type of rule you want to create.
4.
Click
Next
.
The
Step 2: Service
dialog box appears.
The example below shows a Scan rule.
5.
Complete the fields using the relevant information in the following table.
6.
Click
Next
.
Page 269 / 428
Configuring VStream Antivirus
Chapter 12: Using VStream Antivirus
255
The
Step 3: Destination & Source
dialog box appears.
7.
To configure advanced settings, click
Show Advanced Settings
.
New fields appear.
8.
Complete the fields using the relevant information in the following table.
9.
Click
Next
.
Page 270 / 428
Configuring VStream Antivirus
256
Check Point ZoneAlarm User Guide
The
Step 4: Done
dialog box appears.
10.
If desired, type a description of the rule in the field provided.
11.
Click
Finish
.
The new rule appears in the
Antivirus Policy
page.
Table 69: VStream Antivirus Rule Fields
In this field…
Do this…
Any Service
Click this option to specify that the rule should apply to any service.
Standard
Service
Click this option to specify that the rule should apply to a specific standard
service or network service object.
You must then select the desired service or network service object from the
drop-down list.
Custom Service
Click this option to specify that the rule should apply to a specific non-
standard service.
The
Protocol
and
Port Range
fields are enabled. You must fill them in.
19216811.live