The Anti-Spyware Policies section allows you to view SonicWall Anti-Spyware signatures and configure the handling of signatures by category groups or on a signature-by-signature basis. Categories are signatures grouped together based on the type of attack, such as ACTIVEX or WEB-ATTACKS. All the entries displayed in the Anti-Spyware Policies table are from the SonicWall GAV signature database downloaded to your SonicWall security appliance.
You can display the signatures in a variety of views using the View Style First Letter drop-down menu or the Lookup Signatures Containing String field:
|
•
|
All Signatures – Displays all the signatures in the database, in alphanumeric order, by signatures within each signature product.
|
|
•
|
Use Search String - Allows you to display signatures containing a specified string entered in the Lookup Signatures Containing String field.
|
|
•
|
0 - 9 - Displays signature names beginning with the number you select from the menu.
|
|
•
|
A - Z - Displays signature names beginning with the letter you select from menu.
|
The Anti-Spyware Policies table displays this information:
|
•
|
# — Lists the sequential number of the signatures in this particular display.
|
|
•
|
Product — Lists the product categories in ascending alphabetic order. Reorder the categories in descending order by clicking the column heading.
|
|
•
|
Name — Displays the name of a particular Anti-Spyware signature policy. Click on the policy name to display its SonicALERT page.
|
|
•
|
ID — Displays the Signature ID of the signature.
|
|
•
|
Prevent — Displays whether Anti-Spyware prevention of the signature or signature product is enabled (
 ), disabled (blank), or uses Global Settings (Global; set in the Signature Groups table in Anti-Spyware Global Settings section). |
|
•
|
Detect — Displays whether Anti-Spyware detection and logging of the signature or signature product is enabled, disabled, or uses Global Settings. You can sort the table by detection.
|
|
•
|
Comments — Displays icons whenever changes have been made to:
|
|
•
|
User Settings (
 ): inclusions and exclusions |
|
•
|
Address Objects (
 ): inclusions and exclusions |
|
•
|
|
•
|
Configure — Contains a configure icon that displays the Edit Anti-Spyware Category window when clicked.
|
By default, Products are enabled or disabled according to the Anti-Spyware Global Settings table.
|
1
|
Click the Configure icon in the Configure column for the Product to be configured. The Edit Anti-Spyware Category dialog displays.
|
|
2
|
|
NOTE: For both the Prevention and Detection options, if the Global Settings have not been set in the Anti-Spyware Global Settings section, the Use Global Setting choice indicates it is (Disabled). If they have been set, the choice indicates it is (Enabled).
|
|
3
|
|
4
|
Optionally, select a user or group category to be included in Anti-Spyware protection from the Included Users/Groups drop-down menu. The default is All.
|
|
5
|
Optionally, select a user or group category to be excluded from Anti-Spyware protection from the Excluded Users/Groups drop-down menu. The default is None.
|
|
6
|
Optionally, select an IP category to be included in Anti-Spyware protection from the Included IP Address Range drop-down menu. The default is All.
|
|
7
|
Optionally, select an IP category to be excluded from Anti-Spyware protection from the Excluded IP Address Range drop-down menu. The default is None.
|
|
8
|
Optionally, select the time and days Anti-Spyware protection is in force from the Schedule drop-down menu. The default is Always on.
|
|
9
|
Optionally, specify the duration between logging attacks with the Log Redundancy Filter (seconds) option. By default, the Use Global Settings check box is selected. To specify a different duration, deselect the Use Global Settings check box and enter the time, in seconds, in the following field.
|
|
10
|
By default, all anti-spyware signatures are enabled or disabled according to the Anti-Spyware Global Settings table and the settings of the signature’s Product category. You can configure a particular anti-spyware signature by clicking the Configure icon in the Configure column for that anti-spyware signature. The Edit Anti-Spyware Signature dialog displays.
The options are the same as those for configuring a Product Category; follow the steps, beginning with Step 2, in Configuring Products.
)