Chapter 18 Anti-Malware
USG FLEX H Series User’s Guide
297
18.5 Anti-Malware Technical Reference
Types of Anti-Malware Scanner
The section describes two types of anti-malware scanner: host-based and network-based.
A host-based anti-malware (HAM) scanner is often software installed on computers and/or servers on
the network. It inspects files for malware patterns as they are moved in and out of the drive. However,
host-based anti-malware scanners cannot eliminate all malware for a number of reasons:
• HAM scanners are slow in stopping malware threats through real-time traffic (such as from the
Internet).
Value This field displays the hash pattern of the entry.
Enter the hash pattern for this entry. Specify a pattern to identify the names of files that the
Zyxel Device should not scan for viruses.
File Name Pattern Configure the settings to automatically block incoming files with names that match the
patterns you set.
Add Click this to create a new entry.
Edit Select an entry and click this to be able to modify it.
Remove Select an entry and click this to delete it.
Active To turn on an entry, select it and click Active.
Inactive To turn off an entry, select it and click Inactive.
Column ( ) Click the column icon to select the fields you want to show in the table. Uncheck the
checkbox if you want to hide a field in the table.
Status The activate (light bulb) icon is lit when the entry is active and dimmed when the entry is
inactive.
Value This field displays the file pattern of the entry.
Enter the file pattern for this entry. Specify a pattern to identify the names of files that the Zyxel
Device should not scan for viruses.
• Use up to 80 characters. Alphanumeric characters, underscores (_), dashes (-), question
marks (?) and asterisks (*) are allowed.
• A question mark (?) lets a single character in the file name vary. For example, use “a?.zip”
(without the quotation marks) to specify aa.zip, ab.zip and so on.
• Wildcards (*) let multiple files match the pattern. For example, use “*a.zip” (without the
quotation marks) to specify any file that ends with “a.zip”. A file named “testa.zip would
match. There could be any number (of any type) of characters in front of the “a.zip” at
the end and the file name would still match. A file named “test.zipa” for example would
not match.
• A * in the middle of a pattern has the Zyxel Device check the beginning and end of the
file name and ignore the middle. For example, with “abc*.zip”, any file starting with “abc”
and ending in “.zip” matches, no matter how many characters are in between.
• The whole file name has to match if you do not use a question mark or asterisk.
• If you do not use a wildcard, the Zyxel Device checks up to the first 80 characters of a file
name.
Apply Click Apply to save your changes back to the Zyxel Device.
Reset Click Reset to return the screen to its last-saved settings.
Table 150 Configuration > Security Service > Anti-Malware > Block/Allow List > Block List
LABEL DESCRIPTION
To Next Page
Loading...
