Chapter 28
Table 122
LABEL | DESCRIPTION |
Protocols to Scan | Select which protocols of traffic to scan for viruses. |
| FTP applies to traffic using the TCP port number specified for FTP in the ALG |
| screen. |
| HTTP applies to traffic using TCP ports 80, 8080 and 3128. |
| SMTP applies to traffic using TCP port 25. |
| POP3 applies to traffic using TCP port 110. |
| IMAP4 applies to traffic using TCP port 143. |
|
|
Actions When |
|
Matched |
|
|
|
Destroy infected | When you select this check box, if a virus pattern is matched, the ZyWALL |
file | overwrites the infected portion of the file (and the rest of the file) with zeros. The |
| |
| unmodified. |
|
|
Send Windows | Select this check box to set the ZyWALL to send a message alert to files’ intended |
Message | user(s) using Microsoft Windows computers connected to the to interface. |
|
|
Log | These are the log options: |
| no: Do not create a log when a packet matches a signature(s). |
| log: Create a log on the ZyWALL when a packet matches a signature(s). |
| log alert: An alert is an |
| immediate attention. Select this option to have the ZyWALL send an alert when a |
| packet matches a signature(s). |
|
|
White List / Black |
|
List Checking |
|
|
|
Bypass white list | Select this check box to not check files against the white list. This disables the |
checking | white list for traffic that matches this |
|
|
Bypass black list | Select this check box to not check files against the black list. This disables the |
checking | black list for traffic that matches this |
|
|
File |
|
decompression |
|
|
|
Enable file | Select this check box to have the ZyWALL scan a ZIP file (the file does not have to |
decompression | have a “zip” or “rar” file extension). The ZyWALL first decompresses the ZIP file |
(ZIP and RAR) | and then scans the contents for viruses. |
| Note: The ZyWALL decompresses a ZIP file once. The ZyWALL |
| does NOT decompress any ZIP file(s) within a ZIP file. |
|
|
| 409 |
ZyWALL USG 1000 User’s Guide | |
|
|