Adding and Editing VStream Antivirus Rules

Linked Diagram Template

To add or edit a VStream Antivirus rule

Click Antivirus in the main menu, and click the Policy tab.
The Antivirus Policy page appears.
Do one of the following:
- To add a new rule, click Add Rule.
- To edit an existing rule, click next to the desired rule.
The VStream Policy Rule Wizard opens, with the Step 1: Rule Type dialog box displayed.
Select the type of rule you want to create.
Click Next.
The Step 2: Service dialog box appears.

The example below shows a Scan rule.
Complete the fields using the relevant information in the following table.
Click Next.
The Step 3: Destination & Source dialog box appears.
To configure advanced settings, click Show Advanced Settings.
New fields appear.
Complete the fields using the relevant information in the following table.
Click Next.
The Step 4: Done dialog box appears.
If desired, type a description of the rule in the field provided.
Click Finish.
The new rule appears in the Antivirus Policy page.

VStream Antivirus Rule Fields

In this field…	Do this…
Any Service	Click this option to specify that the rule should apply to any service.
Standard Service	Click this option to specify that the rule should apply to a specific standard service or network service object. You must then select the desired service or network service object from the drop-down list.
Custom Service	Click this option to specify that the rule should apply to a specific non-standard service. The Protocol and Port Range fields are enabled. You must fill them in.
Protocol	Select the protocol (TCP, UDP, or ANY) for which the rule should apply.
Port Range	To specify the port range to which the rule applies, type the start port number in the left text box, and the end port number in the right text box. Note: If you do not enter a port range, the rule will apply to all ports. If you enter only one port number, the range will include only that port.
If the connection source is	Select the source of the connections you want to allow/block. This list includes network objects. To specify an IP address, select Specified IP and type the desired IP address in the field provided. To specify an IP address range, select Specified Range and type the desired IP address range in the fields provided. To specify any source, select ANY.
And the destination is	Select the destination of the connections you want to allow or block. This list includes network objects. To specify an IP address, select Specified IP and type the desired IP address in the text box. To specify an IP address range, select Specified Range and type the desired IP address range in the fields provided. To specify the UTM-1 IP addresses, select This Gateway. To specify any destination except the UTM-1 Portal IP addresses, select ANY.
Data Direction	Select the direction of connections to which the rule should apply: Download and Upload data. The rule applies to downloaded and uploaded data. This is the default. Download data. The rule applies to downloaded data, that is, data flowing from the destination of the connection to the source of the connection. Upload data. The rule applies to uploaded data, that is, data flowing from the source of the connection to the destination of the connection.
If the current time is	Select this option to specify that the rule should be applied only during certain hours of the day. You must then use the fields and drop-down lists provided, to specify the desired time range.