D-Link NetDefendOS

IP rules are one of the means by which the anti-virus feature is deployed, the deployment. IP

rules specify that the ALG and its associated anti-virus scanning can apply to traffic going in a

given direction and between specific source and destination IP addresses and/or networks.

Scheduling can also be applied to virus scanning so that it takes place only at specific times.

When used with IP rules, an ALG that allows anti-virus scanning must then be associated with an

appropriate service object for the protocol to be scanned. The service object is then associated

with a rule in the IP rule set which defines the origin and destination of the traffic to which the

ALG is to be applied.

Example 6.28. Activating Anti-Virus with an IP Rule

This example shows how to set up an anti-virus scanning policy for HTTP traffic from lannet to

all-nets. We will assume there is already a NAT rule defined in the IP rule set to NAT this traffic.

Finally, modify the NAT rule to use the new service:

Web Interface

A. First, create an HTTP ALG Object:

1. Go to: Objects > ALG > Add > HTTP ALG

2. Specify a suitable name for the ALG, for instance anti_virus

3. Click the Antivirus tab

4. Select Protect in the Mode dropdown list