Security Services > Anti-Virus
713
SonicOS Enhanced 4.0 Administrator Guide
Low Risk - A virus that is not reported in the field and is considered unlikely to be found
in the field in the future has a low risk. Even if such a virus includes a very serious or
unforeseeable damage payload, its risk is still low.
Medium Risk - If a virus is found in the field, and if it uses a less common infection
mechanism, it is considered to be medium risk. If its prevalence stays low and its
payload is not serious, it can be downgraded to a low risk. Similarly it can be upgraded
to high risk if the virus becomes more and more widespread.
High Risk - To be assigned a high risk rating, it is necessary that a virus is reported
frequently in the field. Additionally, the payload must have the ability to cause at least
some serious damage. If it causes very serious or unforeseeable damage, high risk
may be assigned even with a lower level of prevalence.
Anti-Virus Enforcement
SonicWALL Client Anti-Virus currently supports Windows 95, 98, NT, XP, and 2000 platforms.
In order to access the Internet, computers with other operating systems must be exempt from
Anti-Virus policies. To ensure full network protection from virus attacks, it is recommended that
only servers and unsupported machines are excluded from protection, and that third party Anti-
Virus software is installed on each machine before excluding that machine from Anti-Virus
enforcement. There are three options for defining exempt computers:
Enforce Anti-Virus policies for all computers - Selecting this option forces computers to
install VirusScan ASaP in order to access the Internet or the DMZ. This is the default
configuration.
Include specified address range in the Anti-Virus enforcement - Choosing this option
allows the administrator to define ranges of IP addresses to receive Anti-Virus
enforcement. If you select this option, specify a range of IP addresses to be enforced. Any
computer requiring enforcement needs a static IP address within the specified range of IP
addresses. Up to 64 IP address ranges can be entered for enforcement. Click Add to
display the Add AV Range Entry window and then enter the IP address range.
Exclude specified address range in the Anti-Virus enforcement - Selecting this option
allows the administrator to define ranges of IP addresses that are exempt from Anti-Virus
enforcement. If you select this option, specify the range of IP addresses that are exempt.
Any computer requiring unrestricted Internet access needs a static IP address within the
specified range of IP addresses. Up to 64 IP address ranges can be entered. Click Add to
display the Add AV Range Entry window and then enter the IP address range.