set threat-prevention anti-virus policy

Description

Configures the policy of the Anti-Virus blade.

Syntax

set threat-prevention anti-virus policy [ mode <mode> ] [ detect-mod <detect-mode> ] [ scope <scope> [ interfaces <interfaces> ] ] [ protocol-http <protocol-http> ] [ protocol-mail <protocol-mail> ] [ protocol-ftp <protocol-ftp> ] [ file-types-policy <file-types-policy> ]

Parameters

Parameter	Description
detect-mode	Indicates if the Anti-Virus blade is set to 'Detect Only' mode Type: Boolean (true/false)
file-types-policy	Indicates the file types that are inspected by the Anti-Virus blade: malware (known to contain malware), all (all file types), specific (configured file families) Options: malware, all-types, specific-families
interfaces	Indicates the source zones for inspected incoming files: External, External and DMZ or all interfaces Options: all, external, external-dmz
mode	Indicates if the Anti-Virus blade is active Type: Boolean (true/false)
protocol-ftp	Indicates if Anti-Virus inspection will be performed on FTP traffic Type: Boolean (true/false)
protocol-http	Indicates if Anti-Virus inspection will be performed on all configured ports of HTTP traffic Type: Boolean (true/false)
protocol-mail	Indicates if Anti-Virus inspection will be performed on mail traffic (SMTP and POP3) Type: Boolean (true/false)
scope	Indicates the source of scanned filed: Scan incoming files, or scan both incoming and outgoing files Options: incoming, incoming-and-outgoing

Example

set threat-prevention anti-virus policy mode true detect-mode true scope incoming interfaces all protocol-http true protocol-mail true protocol-ftp true file-types-policy malware