manualshive.com logo in svg

KAPERSKY ANTI-VIRUS 5.1 - FOR MICROSOFT ISA SERVER, Administrator'S Manual

Share
Download
KAPERSKY ANTI-VIRUS 5.1 - FOR MICROSOFT ISA SERVER Administrator'S Manual Download Page 55

 

Appendix A. Glossary 

This documentation uses some terms specific to anti-virus protection. The 
glossary is a list of definitions of these terms. The glossary entries are arranged 
in alphabetical order for ease of use. 

А

 

Administrator console

 – an application providing a user interface for 

administrating Kaspersky Anti-Virus

®

 for MS ISA Server. 

Anti-virus database 

– the database created by Kaspersky Labs experts that 

contains definitions of all currently known viruses and methods of their 
detection and disinfection. At Kaspersky Labs, the database is updated 
immediately after new viruses appear. Therefore, system administrators 
must regularly update the anti-virus database. 

Client 

– is a user of a corporate network who uses MS ISA Server to access 

the Internet. 

Controlled object 

– any file transmitted via the HTTP and FTP protocols 

through a firewall. 

Infected object

 – an object containing malicious code. It is recommended 

that you do not work with these objects because they can infect your 
computer. 

Initial data stream

 – is a stream of data transmitted via the HTTP and FTP 

protocols. 

Updating the anti-virus database

 – installation of the new anti-virus data-

base retrieved from Kaspersky Labs update servers. 

 

Summary of Contents for ANTI-VIRUS 5.1 - FOR MICROSOFT ISA SERVER

Page 1: ...KASPERSKY LABS Kaspersky Anti Virus 5 1 for Microsoft ISA Server Administrator s guide...

Page 2: ...K A S P E R S K Y A N T I V I R U S 5 1 F O R M S I S A S E R V E R Administrator s Guide Kaspersky Labs Ltd http www kaspersky com Edition date July 2004...

Page 3: ...RSKY ANTI VIRUS FOR ISA SERVER 19 4 1 Default values of scan settings 19 4 2 Managing scans 21 4 2 1 Configuring general settings of anti virus scanning 22 4 2 1 1 General settings 23 4 2 1 2 Settings...

Page 4: ...ptions for the application 46 4 7 Managing license keys 48 4 7 1 Renewing your license 49 4 7 2 Removing a license key 50 CHAPTER 5 TROUBLESHOOTING 51 APPENDIX A GLOSSARY 54 APPENDIX B KASPERSKY LABS...

Page 5: ...s and the anti virus kernel is installed into the system as a service The anti virus protection is managed through a special interface built into the ISA administration snap in for Microsoft Managemen...

Page 6: ...ver operates in integration with Microsoft Internet Security and Acceleration Server 2000 with Service Pack 1 or higher installed under the following platforms Microsoft Windows 2003 Server Microsoft...

Page 7: ...Guide and the license key The license key can also be sent to you by e mail after receiving your payment The License Agreement is a legal agreement between you and the manufacturer Kaspersky Labs Ltd...

Page 8: ...information related to the operation and use of your operating system or various other technologies 1 4 Conventions In this book we use various conventions to emphasize different meaningful parts of t...

Page 9: ...consider possible ISA Server modes and any special features of Kaspersky Anti Virus operation for each of these modes The documentation for ISA Server describes three possible modes Firewall Proxy Ca...

Page 10: ...the ISA Server is running in the Firewall mode Kaspersky Anti Virus Web Filter is installed in disabled state since it is presupposed that all the clients use the ISA Server as a firewall without acce...

Page 11: ...Typical Deployment scenarios 10 Figure 1 Processing of data streams by Kaspersky Anti Virus for MS ISA Server...

Page 12: ...gs of these filters to receive the initial data streams and subsequently process them Before installing Kaspersky Anti Virus for ISA Server make sure that the standard HTTP Redirector Filter and FTP A...

Page 13: ...A Server filters However these additional filters can affect the performance of the anti virus application if their settings prevent the initial data from entering the Kaspersky Anti Virus filters Mor...

Page 14: ...tall only the administration console on the administrator s workstation If you want to install Kaspersky Anti Virus for ISA Server administration console on a computer make sure that ISA administratio...

Page 15: ...ber of queued objects Folder for storing the anti virus database that is used to detect and disin fect viruses Folder for storing temporary files created by the program during its opera tion Number of...

Page 16: ...ver must be restarted in order to load the anti virus filters included in the package You can restart the server from either the MS ISA Server console or the setup wizard window if you check the corre...

Page 17: ...or if you want to install a component of Kaspersky Anti Virus To correctly install the anti virus application select Repair in the dialog box that appears on your screen Fig 6 In this case the setup w...

Page 18: ...ation dialog box will appear Fig 3 To con tinue with setup follow the steps described for the first installation 3 2 3 Troubleshooting installation problems During installation of Kaspersky Anti Virus...

Page 19: ...virus application is an array member The application cannot be installed on such a server because Kaspersky Anti Virus for ISA Server does not support this ISA Server mode Figure 9 Required Software n...

Page 20: ...Default values of scan settings You can configure scan settings on the tabs of the Properties of Kaspersky Anti Virus for ISA Server dialog box The following are the default scan settings The HTTP ta...

Page 21: ...r storing Kaspersky Anti Virus for ISA Server working data Folder for storing anti virus databases C Program Files Kaspersky Lab KAV for ISA bases Folder for scan queue C Program Files Kaspersky Lab K...

Page 22: ...fault all application branches and possible manipulations with them are displayed as Taskpad view You can change the view to Advanced by selecting the corresponding item from the shortcut menu To open...

Page 23: ...Kaspersky Anti Virus for MS ISA Server main window Figure 11 Shortcut menu 4 2 1 Configuring general settings of anti virus scanning The administrator may need to change general settings of anti virus...

Page 24: ...tab Fig 12 you can make changes to the general settings of Kaspersky Anti Virus that affect the application performance Figure 12 The Anti Virus tab In the three fields located in the upper part of th...

Page 25: ...aneously Enter the required number to the Number of anti virus kernels run simultaneously field You can select up to 32 anti virus kernels to be run simultaneously It is recommended that you run four...

Page 26: ...scanning On the HTTP tab Fig 13 you can modify settings for scanning HTTP traffic and set restrictions for processing data transferred via the HTTP protocol Here you can also edit messages sent to th...

Page 27: ...nnot exceed the value of the Maximum scan time for the first chunk of data sec field Set the percentage of data accumulated by Kaspersky Anti Virus for subsequent analysis and scanning in the Data not...

Page 28: ...lt values button Figure 14 The FTP tab 4 2 2 Managing groups Each group includes local network clients each client can be a member of one or several groups The same policy can be applied to different...

Page 29: ...ecify the subnet address and subnet mask To switch to the list of groups Select Manage groups in the Kaspersky Anti Virus main window The Manage groups of Kaspersky Anti Virus clients dialog box will...

Page 30: ...e name and description of the new group Figure 16 Creating a new group 3 In the next dialog box Fig 17 click Add clients Figure 17 Adding clients to a new group 4 In the Clients dialog box Fig 18 eith...

Page 31: ...ll in the Client name field and select one of the following options One IP address to add a client with a static IP address Subnet to add a client specified by a subnet mask Range of IP addresses to s...

Page 32: ...perties dialog box On the General tab of this dialog box Fig 20 change the name and description of the group On the Clients tab Fig 21 you can add a client or delete an existing client from the group...

Page 33: ...inistrators policy is assigned to the Administrators group no other policy can be assigned to this group To switch to the list of policies Select Manage policies in the Kaspersky Anti Virus main windo...

Page 34: ...ure 24 Adding a group of clients 4 In the Add Trusted Servers to a Policy dialog box Fig 25 click Add a server to exclude incoming traffic from these servers from anti virus scanning In the Trusted Se...

Page 35: ...dialog box click Add a object type to add a type of object to be excluded from anti virus scanning see section 4 2 3 2 on page 37 for more details Figure 26 Adding a mime type 6 After the list of tru...

Page 36: ...e the list of groups assigned to this policy add a new group to the list of groups or delete a group from the list Figure 27 The General tab Figure 28 The Groups tab On the Servers tab Fig 29 and the...

Page 37: ...nti virus protection This list only contains names of servers from which traffic cannot contain any malicious objects The larger the list of trusted servers the less Kaspersky Anti Virus intrudes into...

Page 38: ...cts excluded from scans Reducing the types of object excluded from anti virus scans as well as the list of trusted servers in turn reduces the load on the resources of the ISA Server computer The list...

Page 39: ...TP protocol from Kaspersky Labs update servers from a local or shared folder Updating of the anti virus database is managed from the Updating tab of the Properties of Kaspersky Anti Virus for ISA Serv...

Page 40: ...in the corresponding field 4 In the Use HTTP proxy part enter the HTTP proxy parameters if such a proxy is used in your system Select Use local proxy of the ISA server to use a local proxy of the ISA...

Page 41: ...A Server administrator By default the database is updated every day at 11 15 p m In the three fields shown below Fig 33 you can change the frequency and time of updating the anti virus database 4 3 2...

Page 42: ...e client VIRUSNAME the name of the virus that infected a data stream If an internal system error occurs after the request is sent the client that requested the data receives the following HTML message...

Page 43: ...When the file is being downloaded from the EICAR website the anti virus program will detect it label it as infected fail to disinfect it and apply the action defined by the administrator for handling...

Page 44: ...be logged 1 Switch to the Add Counters dialog box Fig 35 and select Use local computer counters if ISA Server is managed from an ISA Server computer or Select counters from computer if ISA Server is...

Page 45: ...files windir System32 PERFCxxx DAT windir system32 PERFHxxx DAT Read access to the following registry keys HKEY_LOCAL_MACHINE Software Microsoft WindowsNT CurrentVersion Perflib HKEY_LOCAL_MACHINE SY...

Page 46: ...spersky Anti Virus Web Filter are saved in the WINDIR isavweb log file and those scanned by Kaspersky Anti Virus HTTP Application Filter in the WINDIR isavbr log file WINDIR is the full path to the di...

Page 47: ...g notifications upon critical events 4 6 3 Configuring diagnostics options for the application Kaspersky Anti Virus allows you to diagnose program performance and record results in the following log f...

Page 48: ...iagnostics options for Kaspersky Anti Virus All critical events related to Kaspersky Anti Virus performance are also saved to the Windows system log In the left pane of the tab you can select tasks su...

Page 49: ...de you with a trial key valid for two weeks or a month After the trial period expires the key will be blocked and will not be able to scan data streams for viruses You cannot use a trial key more than...

Page 50: ...viruses To renew your license you need to Contact the seller of your copy of the product and purchase a new Kaspersky Anti Virus license key or Purchase a license key at Kaspersky Labs Write a letter...

Page 51: ...the previous key expires Thus you will be able to keep your server constantly protected from viruses To install a reserve key click Add and select the reserve key file key in the file selection dialo...

Page 52: ...the purpose of its anti virus is establishment of real not imaginary anti virus security for its users since you should never be semi protected Besides partial protection is even worse than no protect...

Page 53: ...start the services from the MS ISA Server console Question After updating the anti virus database Kaspersky Anti Virus does not scan traffic Why If updating of the anti virus database either automatic...

Page 54: ...at Avoid sending HTML messages 3 At the beginning of the message specify the exact versions of the operating system and Kaspersky Anti Virus distribution package and provide the name of your license k...

Page 55: ...fection At Kaspersky Labs the database is updated immediately after new viruses appear Therefore system administrators must regularly update the anti virus database C Client is a user of a corporate n...

Page 56: ...current and even future threats Resistance to future attacks is the basic policy implemented in all Kaspersky Lab s products At all times the company s products remain at least one step ahead of many...

Page 57: ...tection against viruses that attempt to penetrate computers via e mail messages The program provides automatic scanning and disinfection of all incoming POP3 and outgoing SMTP e mail messages and effi...

Page 58: ...e In this stealthy mode the program works seamlessly to keep your computer protected while you are on the Web The program provides conventional transparency and accessibility of information Kaspersky...

Page 59: ...ool for automated deployment and administration You are free to choose from any of these anti virus programs according to the operating systems and applications you use Kaspersky Corporate Suite This...

Page 60: ...tors incoming e mail traffic streams for objects identified as spam Kaspersky Anti Spam acts as a barrier to unsolicited e mail The product is compatible with any mail system and can be installed on e...

Page 61: ...ad to advise you on any matters related to our product by phone or via e mail Rest assured that all of your recommendations and suggestions will be thoroughly reviewed and considered Technical support...

Page 62: ...FROM AN AUTHORISED KASPERSKY LABS DISTRIBUTOR OR RESELLER THE RIGHT TO RETURN AND REFUND EXTENDS ONLY TO THE ORIGI NAL PURCHASER All references to Software herein shall be deemed to include the softwa...

Page 63: ...not intend to make such information available for any reason including without limitation costs you shall be permitted to take such steps to achieve interoperability provided that you only reverse eng...

Page 64: ...requirements described herein Upon any termination or expiration of this Agreement you must immediately destroy all copies of the Software and the Documentation You may terminate this Agreement at an...

Page 65: ...nts that for 90 days from first download or installation the Software will perform substantially in accordance with the functionality described in the Documentation when operated properly and in the m...

Page 66: ...o paragraph i the Supplier shall have no liability whether in contract tort restitution or otherwise for any of the following losses or damage whether such losses or damage were foreseen foreseeable k...

Page 67: ...esaid shall cease to have effect as from the Effective Date Save as provided in paragraphs ii iii you shall not have any remedy in respect of an untrue statement made to you upon which you relied in e...

Reviews:

No comments

Brands by name

Popular brands

Load more brands