Prerequisites

Before configuring Anti-Malware, you must:

• Configure a proxy server if you plan to use Anti-Malware in an environment that includes a proxy server for Internet access.
• Configure the firewall gateway to accept traffic from Anti-Malware updates and Cloud Reputation services.
• Configure port access.

To configure the Endpoint Security Management Server to work with a proxy server:

1. On the Endpoint Security Management Server, run: cpstop.
2. Open $UEPMDIR/engine/conf and edit the local.properties file.

   Note - Delete the #character from the beginning of each row that you edit.

3. Add these properties:
   1. The proxy server's IP address as shown in the example below:

      http.proxy.host=<IP address>

   2. The proxy server's listening port as shown in the example below:

      http.proxy.port=8080

   3. The username if basic authentication is enabled on the proxy server. Leave it empty if no authentication is required.

      http.proxy.user=<username>

   4. The password if basic authentication is enabled on the proxy server.

      http.proxy.password=<password>

4. Save the $UEPMDIR/engine/conf/local.properties file.
5. On the Endpoint Security Management Server, run: cpstart.

Allowing Anti-Malware Update Traffic

After configuring the proxy server, configure the firewall gateway to accept the traffic to the update servers.

To enable update traffic through a proxy server:

1. In your firewall gateway, allow outbound internet connectivity.
2. In your firewall gateway, allow outbound connectivity to the Anti-Malware update server.

Port Access

The Endpoint Security server must have access to ports 80 and 443 to retrieve the latest malware definitions. Make sure that your firewall gateway allows this traffic.