Antivirus Configuration Best Practices

?         DO NOT INSTALL the Anti Virus software on D:\ as this is your swap space

?         Isolate enVision in its own Group or Group Anti Virus Policy

?         Do not scan EMC Celerra NAS if enVision IPDB is stored there.  This NAS is already hashed, and EMC has Celerra-AV scanning if necessary that is more efficient.

?         No On-Demand scans during Top of Hour, Midnight (UTC) during enVision daily Indexing.

?         Configure first action to be Quarantine, DO NOT DELETE.

?         Some Anti Virus software require various ports and services to communicate to the server if you plan on deploying in a managed format. Where possible, it is recommend that you not enable these services or open these ports.  Rather, one can typically leave the Anti Virus client in un-managed mode and configure it to seek updates daily on its own.

?         Exclude any hashed enVision LogSmart IPDB log storage locations (E:\nic\lsnode\data is default on an enVision ES appliance)

?         Exclude D:\tmp directory from scanning (Nuggets are read only as ASCII text)

?         Exclude %_Envision%\database\* from scanning.

?         Ensure that you are scanning %_envision%\ftp_files\*, as this FTP drop site is a potential entry point for malware.