USG310 - AV - is it work?

Przemek
Przemek Posts: 28  Freshman Member
First Comment Friend Collector Fifth Anniversary
edited April 2021 in Security
I've never seen any logs with AV results.
What is your experience with AV? I think its not working at all.
I tried https://www.eicar.org/?page_id=3950 sample files and I can download them without any problems.

We are paying for AV Activated  text in our zyxel panel or its working?
How can I check if its working? Should I set anything else to make it react on downloading virus files?


All Replies

  • Zyxel_Stanley
    Zyxel_Stanley Posts: 1,379  Zyxel Employee
    100 Answers 1000 Comments Friend Collector Seventh Anniversary

    Hi @Przemek  

    Can you make sure your configuration on USG first?

    (1) Create Anti-Virus profile

    a.   Enable EICAT test virus

    b.   Enable destroy infected file


    (2) Apply Anti-Virus profile to policy control rule.

    (3) And then go to download the test file from eicar.

    Then PC still can download the file successfully, but the file is unable to unzip or content will replace as “0”. And USG will display log that destroyed the file.


  • Przemek
    Przemek Posts: 28  Freshman Member
    First Comment Friend Collector Fifth Anniversary
    Looks like rule on top PolicyControl make job:)
  • Zyxel_Stanley
    Zyxel_Stanley Posts: 1,379  Zyxel Employee
    100 Answers 1000 Comments Friend Collector Seventh Anniversary
    Hi @Przemek
    It's good to know you find the reason on this. :+1:

Security Highlight