Protocol filtering

Note

Starting with Windows Vista Service Pack 1 and Windows Server 2008, the new Windows Filtering Platform (WFP) architecture is used to check network communication. Since the WFP technology uses special monitoring techniques, the Protocol filtering section is not available.

This tab includes the antivirus protection setup options for the application protocols POP3 (used by e-mail clients to retrieve e-mail from remote servers) and HTTP (used for Internet browsing). The protocols are controlled by the ThreatSense scanning engine, which seamlessly integrates all advanced malware scanning techniques. The control works automatically regardless of Internet browser or e-mail client used. For encrypted (SSL) communication see Protocol filtering > SSL.

Nod32 ea config epfw scan main page Protocol filtering

Enable application protocol content filtering

If enabled, all HTTP and POP3 traffic will be checked by the antivirus scanner

 

Monitoring all communication is ensured by routing the traffic to the internal proxy server where it is scanned for threats. The routing can be enabled for:

  • HTTP and POP3 ports – limits routing the traffic to the internal proxy server only for HTTP and POP3 ports
  • Applications marked as Internet browsers and email clients – limits routing the traffic to the internal proxy server only for the applications marked as Internet browsers and email clients
  • Ports and applications marked as Internet browsers or email clients – enables routing of all traffic on HTTP and POP3 ports as well as all the communication of the applications marked as Internet browsers and email clients on the internal proxy server

 

Protocol filtering