D-Link DFL-1600 Guia De Referência
2.3. ANTIVIRUS
These log messages refer to the ANTIVIRUS (Anti-virus related events) category.
2.3.1. virus_found (ID: 05800001)
Default Severity
Log Message
Virus found in file <filename>. Virus Name: <virusname>. Signature:
<virussig>. Advisory ID: <advisoryid>.
<virussig>. Advisory ID: <advisoryid>.
Explanation
A virus has been detected in a data stream. Since anti-virus is running
in protect mode, the data transfer will be aborted in order to protect the
receiver.
in protect mode, the data transfer will be aborted in order to protect the
receiver.
Gateway Action
block_data
Recommended Action
If the infected file is local, run anti-virus program to clean the file.
Revision
1
Parameters
filename
virusname
virussig
advisoryid
[layer7_srcinfo]
[layer7_dstinfo]
virusname
virussig
advisoryid
[layer7_srcinfo]
[layer7_dstinfo]
Context Parameters
2.3.2. virus_found (ID: 05800002)
Default Severity
Log Message
Virus found in file <filename>. Virus Name: <virusname>. Signature:
<virussig>. Advisory ID: <advisoryid>.
<virussig>. Advisory ID: <advisoryid>.
Explanation
A virus has been detected in a data stream. Since anti-virus is running
in audit mode, the data transfer will be allowed to continue.
in audit mode, the data transfer will be allowed to continue.
Gateway Action
allow_data
Recommended Action
If the infected file is local, run anti-virus program to clean the file.
Revision
1
Parameters
filename
virusname
virussig
advisoryid
[layer7_srcinfo]
[layer7_dstinfo]
virusname
virussig
advisoryid
[layer7_srcinfo]
[layer7_dstinfo]
Context Parameters
2.3. ANTIVIRUS
Chapter 2. Log Message Reference
138