If you have purchased and enabled the Gateway AntiVirus feature, you can configure the actions the POP3-proxy takes when a virus is found in an email message. You can also specify the actions the Firebox takes when an email message contains an attachment that the Firebox cannot scan.
- To use the proxy definition screens to activate Gateway AntiVirus, see Activate Gateway AntiVirus from Proxy Definitions.
- To use the Subscription Services menu in Policy Manager to activate Gateway AntiVirus, see Activate Gateway AntiVirus with a Wizard from Policy Manager.
- To configure Gateway AntiVirus for the POP3-proxy, see Configure Gateway AntiVirus Actions.
- Gateway AntiVirus must be enabled to use APT Blocker. To configure APT Blocker for the POP3-proxy, see Configure APT Blocker.
When you enable Gateway AntiVirus, you must set the actions to be taken if a virus or error is found in an email message or attachment.
The options for antivirus actions are:
Allows the packet to go to the recipient, even if the content contains a virus.
Locks the attachment. This is a good option for files that cannot be scanned by the Firebox. A file that is locked cannot be opened easily by the user. Only the administrator can unlock the file. The administrator can use a different antivirus tool to scan the file and examine the content of the attachment. For information about how to unlock a file locked by Gateway AntiVirus, see Unlock a File Locked by Gateway AntiVirus.
Removes the attachment and allows the message through to the recipient.
If you set the configuration to allow attachments, your configuration is less secure.
Gateway AntiVirus scans each file up to the kilobyte count you specify in the Limit scanning to first text box. Any additional bytes in the file are not scanned. This allows the proxy to partially scan very large files without a large effect on performance.
For information about the default and maximum scan limits for each Firebox model, see About Gateway AntiVirus Scan Limits.