Manualshelf

6.1 HP IBRIX X9000 Network Storage System CLI Reference (TA768-96057, June 2012)

ManualsBrandsHP ManualsStorageHP X9320 IB 21.6TB Network Storage System
11121314151617181920
ibrix_avconfig
Configures Antivirus operations on an X9000 cluster.
Description
The ibrix_avconfig command can be used to enable or disable Antivirus operations on file
systems, to add the virus scan engines running the Antivirus software, to configure exclusions on
directories, and to configure other policies. To configure the Antivirus feature on a cluster, complete
these steps:
1. Add the external virus scan engines to be used for virus scanning. These systems run the
Antivirus software. Use the ibrix_av command to schedule updates of virus definitions from
the virus scan engines to the cluster nodes.
2. Enable Antivirus on file systems.
3. Update Antivirus settings as appropriate for your cluster.
For file sharing protocols other than CIFS, when Antivirus is enabled on a file system, scans are
triggered when a file is first read. Subsequent reads to the file do not trigger a scan unless the file
has been modified or the virus definitions have changed. For CIFS, you must specify the file
operations that trigger a scan (open, close, or both).
The scans are forwarded to an external scan engine, which blocks the operation until the scan is
complete. After a successful scan, if the file is found to be infected, the system reports a
permission denied error message as the result of the file operation. If the file is clean, the file
operation is allowed to go through.
You can define Antivirus exclusions on directories in a file system to exclude files from being
scanned. When you define an exclusion rule for a directory, all files/folders in that directory
hierarchy are excluded from Antivirus scans based on the rule.
Synopsis
Add an external virus scan engine:
ibrix_avconfig -a -S -I IPADDR -p PORTNUM
The port number specified here must match the ICAP port number configured on the virus scan
engines. The recommended ICAP port on the virus scan engine is 1344.
Remove the external virus scan engine with the specified IP address:
ibrix_avconfig -r -S -I IPADDR
Enable Antivirus on specified file systems:
ibrix_avconfig -e -f FSLIST
If you specify more than one file system, use commas to separate the file systems.
Enable Antivirus on all file systems in the cluster:
ibrix_avconfig -e -F
Update the Antivirus unavailable policy:
ibrix_avconfig -u -g A|D
This policy determines how targeted file operations are handled when an external virus scan engine
is not available. The policies are:
A — Allow. All operations triggering scans are allowed to run to completion.
D — Deny. All operations triggering scans are blocked and returned with an error.
Update the protocol-specific Antivirus scan setting:
ibrix_avconfig -u -k PROTOCOL -G O|C|B
ibrix_avconfig 11