6.5 HP StoreAll OS CLI Reference Guide
Table Of Contents
- HP StoreAll OS CLI Reference Guide
- Contents
- 1 General CLI information
- 2 StoreAll commands
- ibrix_activedirectory
- ibrix_archiving
- ibrix_audit_reports
- ibrix_auth
- ibrix_av
- ibrix_avconfig
- ibrix_avquarantine
- ibrix_avscan
- ibrix_caseinsensitive
- ibrix_certificate
- ibrix_chassis
- ibrix_cifs
- ibrix_cifsconfig
- ibrix_cifsmonitor
- ibrix_cifsperms
- ibrix_client
- ibrix_cluster
- ibrix_clusterconfig
- ibrix_collect
- ibrix_crr
- ibrix_crreq
- ibrix_crr_export
- ibrix_crrhealth
- ibrix_crr_nic
- ibrix_datavalidation
- ibrix_dbck
- ibrix_df
- ibrix_edquota
- ibrix_evacuate
- ibrix_event
- ibrix_exportfs
- ibrix_fm
- ibrix_fm_tune
- ibrix_fs
- Description
- Synopsis
- Create a file system
- View information about file systems
- Extend a file system
- Audit log expiration policy
- Archiving/auditing synchronizer (Retention Expiration and Autocommit)
- Delete a file system
- Migrate segment ownership
- Enable or disable quotas
- Enable, disable, or display Express Query and auditing settings
- Mark a bad segment
- Enable or disable Export Control
- Assign or delete a standby server for the specified segments
- Options
- See also
- ibrix_fs_ops
- ibrix_fs_tune
- ibrix_fsck
- ibrix_ftpconfig
- ibrix_ftpshare
- ibrix_haconfig
- ibrix_hba
- ibrix_health
- ibrix_healthconfig
- ibrix_host_tune
- ibrix_hostgroup
- ibrix_hostpower
- ibrix_httpconfig
- ibrix_httpshare
- ibrix_httpvhost
- ibrix_idmapping
- ibrix_ldapconfig
- ibrix_ldapidmapping
- ibrix_license
- ibrix_localgroups
- ibrix_localusers
- ibrix_lookup
- ibrix_lv
- ibrix_lwhost
- ibrix_lwmount
- ibrix_lwumount
- ibrix_migrator
- ibrix_mount
- ibrix_mountpoint
- ibrix_ndmpconfig
- ibrix_ndmpsession
- ibrix_nic
- ibrix_objectstore
- ibrix_objectstoreadmin
- ibrix_objectstoremonitor
- ibrix_onlinequotacheck
- ibrix_phonehome
- ibrix_powersrc
- ibrix_profile
- ibrix_pv
- ibrix_rebalance
- ibrix_reports
- ibrix_reten_adm
- ibrix_server
- ibrix_snap
- ibrix_snapreclamation
- ibrix_snmpagent
- ibrix_snmpgroup
- ibrix_snmptrap
- ibrix_snmpuser
- ibrix_snmpview
- ibrix_stats
- ibrix_tape
- ibrix_task
- ibrix_tier
- ibrix_top
- ibrix_umount
- ibrix_usernamemapping
- ibrix_version
- ibrix_vg
- ibrix_vs
- ibrix_vs_snap
- ibrix_vs_snap_strategy
- MDexport
- MDimport
- upgrade60.sh
- verify_client_update
- 3 Support and other resources
- 4 Documentation feedback
- Glossary
- Index
ibrix_avconfig
Configures Antivirus operations on a StoreAll cluster.
Description
The ibrix_avconfig command can be used to enable or disable Antivirus operations on file
systems, to add the virus scan engines running the Antivirus software, to configure exclusions on
directories, and to configure other policies. To configure the Antivirus feature on a cluster, complete
these steps:
1. Add the external virus scan engines to be used for virus scanning. These systems run the
Antivirus software. Use the ibrix_av command to schedule updates of virus definitions from
the virus scan engines to the cluster nodes.
2. Enable Antivirus on file systems.
3. Update Antivirus settings as appropriate for your cluster.
For file sharing protocols other than SMB, when Antivirus is enabled on a file system, scans are
triggered when a file is first read. Subsequent reads to the file do not trigger a scan unless the file
has been modified or the virus definitions have changed. For SMB, you must specify the file
operations that trigger a scan (open, close, or both).
The scans are forwarded to an external scan engine, which blocks the operation until the scan is
complete. After a successful scan, if the file is found to be infected, the system reports a
permission denied error message as the result of the file operation. If the file is clean, the file
operation is allowed to go through.
You can define Antivirus exclusions on directories in a file system to exclude files from being
scanned. When you define an exclusion rule for a directory, all files/folders in that directory
hierarchy are excluded from Antivirus scans based on the rule.
IMPORTANT: The exclusion by file extension feature is not supported for files objects stored under
an HTTP StoreAll REST API share created in the object mode. If the share is created under the file
system on which you created the exclusion, the exclusion still does not apply to the file objects
present under that share in object mode. This situation occurs because the HTTP StoreAll REST API
object mode references file objects with hash names.
Synopsis
Add an external virus scan engine:
ibrix_avconfig -a -S -I IPADDR -p PORTNUM
The port number specified here must match the ICAP port number configured on the virus scan
engines. The recommended ICAP port on the virus scan engine is 1344.
Remove the external virus scan engine with the specified IP address:
ibrix_avconfig -r -S -I IPADDR
Enable Antivirus on specified file systems:
ibrix_avconfig -e -f FSLIST
If you specify more than one file system, use commas to separate the file systems.
Enable Antivirus on all file systems in the cluster:
ibrix_avconfig -e -F
Update the Antivirus unavailable policy:
ibrix_avconfig -u -g A|D
ibrix_avconfig 21