User manual
Table Of Contents
- 1 Introduction
- 2 Icons and emphases
- 3 Product information
- 4 Installation and uninstallation
- 5 Overview of AntiVir Professional
- 5.1 User interface and operation
- 5.2 How to...?
- 5.2.1 Activate license
- 5.2.2 Avira AntiVir Professional automatic update
- 5.2.3 Start a manual update
- 5.2.4 On-demand scan: Using a scan profile to scan for viruses and malware
- 5.2.5 On-demand scan: Scan for viruses and malware using Dragamp;Drop
- 5.2.6 On-demand scan: Scan for viruses and malware via the context menu
- 5.2.7 On-demand scan: Automatically scan for viruses and malware
- 5.2.8 On-demand scan: Targeted scan for active rootkits
- 5.2.9 Reacting to detected viruses and malware
- 5.2.10 Quarantine: Handling quarantined files (*.qua)
- 5.2.11 Quarantine: Restore the files in quarantine
- 5.2.12 Quarantine: move suspicious files to quarantine
- 5.2.13 Scan profile: Amend or delete file type in a scan profile
- 5.2.14 Scan profile: Create desktop shortcut for scan profile
- 5.2.15 Events: Filter events
- 5.2.16 MailGuard: Exclude email addresses from scan
- 5.2.17 Firewall: Select the security level for the Firewall
- 6 Scanner::Overview
- 7 Updates
- 8 Avira Firewall::Overview
- 9 FAQ, Tips
- 10 Viruses and more
- 11 Info and Service
- 12 Reference: Configuration options
Avira AntiVir Professional
94
12.4.1 Adapter rules
In the Avira Firewall, an adapter represents a software simulated hardware device (e.g.
miniport, bridge connection, etc.) or a real hardware device (e.g. network card).
The Avira Firewall displays the adapter rules of all existing adapters on your computer
for which a driver was installed.
A predefined adapter rule depends on the security level. You can change the security
level in the Online protection::Firewall section of the Avira AntiVir Professional Control
Center or you can define your own adapter rules. If you have defined your own adapter
rules, in the Firewall section of the Avira AntiVir Professional Control Center, the
security level is set to custom.
Note
The defaultsecurity level setting for all predefined rules of the Avira Firewall is High
ICMP protocol
The Internet Control Message Protocol (ICMP) is used to exchange error and
information messages on networks. The protocol is also used for status messages with
ping or tracer.
With this rule you can define the incoming and outgoing blocked message types, the
behavior in case of flooding and the reaction of fragmented ICMP packets. This rule
serves for preventing so-called ICMP flood attacks, which results in an increase of the
CPU load of the attacked machine as it responds to every packet.
Predefined rules for the ICMP protocol
Setting: Low
Setting:
Medium
Setting: High
Incoming blocked types: no
type.
Outgoing blocked types: no
type.
Assume flooding if delay
between packets is less than
50 ms.
Reject fragmented ICMP
packets.
Same rule as for
the low level.
Incoming blocked types:
several types
Outgoing blocked types:
several types
Assume flooding if delay
between packets is less than
50 ms.
Reject fragmented ICMP
packets.
Incoming blocked type: no types/several types
With a mouse click on the link a list of ICMP packet types is displayed. From this list you
can specify the desired incoming ICMP message types you want to block.
Outgoing blocked type: no types/several types
With a mouse click on the link a list of ICMP packet types is displayed. From this list you
can select the desired outgoing ICMP message types you want to block.
Flooding
With a mouse click on the link a dialog box is displayed where you can enter the
maximum allowed ICMPA delay.
Fragmented ICPM packets