Avira WEBGATE SUITE, ANTIVIR WEBGATE, ANTIVIR WEBGATE SUITE User Manual
User Manual
Avira AntiVir WebGate | WebGate Suite
www.avira.com
Contents
1 About this Manual ...............................................................................4
1.1 Introduction ....................................................................................................... 4
1.2 The Structure of the Manual .............................................................................. 5
1.3 Signs and Symbols .............................................................................................. 5
1.4 Abbreviations ...................................................................................................... 6
2 Product Information ...........................................................................7
2.1 Features .............................................................................................................. 8
2.2 Licensing Concept .............................................................................................. 8
2.3 Modules and Operating Mode of Avira AntiVir WebGate ............................... 9
2.3.1 System Requirements ............................................................................. 10
3 Installation .......................................................................................11
3.1 Choosing the WebGate Computer ................................................................... 11
3.2 Getting the Installation Files ........................................................................... 11
3.3 Licensing ........................................................................................................... 12
3.4 Installing Avira AntiVir WebGate .................................................................... 13
3.5 Reinstalling and uninstalling AntiVir ............................................................. 16
4 Configuration ...................................................................................18
4.1 Monitoring HTTP Traffic ................................................................................. 18
4.2 Monitoring FTP Traffic .................................................................................... 23
4.3 Integration over ICAP Interface ...................................................................... 24
4.4 Configuration Files ........................................................................................... 26
4.4.1 Product Configuration in avwebgate.conf ............................................26
4.4.2 Scanner Configuration in avwebgate-scanner.conf ..............................33
4.4.3 Updater Configuration in avupdate.conf ..............................................34
4.4.4 Access Control Configuration in avwebgate.acl ....................................36
4.5 Templates Configuration ................................................................................. 37
4.6 Testing Avira AntiVir WebGate ...................................................................... 38
5 Operation .........................................................................................39
5.1 Starting and Stopping Avira AntiVir WebGate manually ............................... 39
5.2 Procedures when Detecting Viruses or Unwanted Programs ........................40
6 Updates ............................................................................................42
6.1 Internet Updates .............................................................................................. 42
7 Service ..............................................................................................44
7.1 Support ............................................................................................................. 44
7.2 Online Shop ...................................................................................................... 44
7.3 Contact .............................................................................................................. 45
Avira GmbH Avira AntiVir WebGate 2
8 Appendix ..........................................................................................46
8.1 Glossary ............................................................................................................. 46
8.2 Further Information ......................................................................................... 47
8.3 Golden Rules for Protection Against Viruses .................................................. 48
Avira GmbH Avira AntiVir WebGate 3
About this Manual
1About this Manual
In this Chapter you can find an overview of the structure and contents of this
manual.
After a short introduction, you can read information about the following issues:
z The Structure of the Manual – Page 5
z Signs and Symbols – Page 5
1.1 Introduction
We have enclosed in this manual all the information you need about Avira AntiVir
WebGate and it will guide you step by step through installation, configuration and
operation of the software.
The appendix contains a Glossary, which explains the basic terms.
The RELEASE_NOTES file included in the product kit presents additional current
information about Avira AntiVir WebGate.
For further information and assistance, please refer to our Website, to the Hotline
of our Technical Support and to our regular Newsletter (see Service – Page 44).
Your Avira Team
Avira GmbH Avira AntiVir WebGate 4
About this Manual
1.2 The Structure of the Manual
The manual of your AntiVir software consists in a number of Chapters, bringing
you the following information:
Chapter Contents
1 About this Manual The structure of the manual, signs and symbols
2 Product Information General information about Avira AntiVir
3 Installation Instructions to install Avira AntiVir WebGate
4 Configuration Directions for optimum setting of Avira AntiVir
6 Updates Running manual or automatic updates
5 Operation Working with Avira AntiVir WebGate;
WebGate software, its modules, features,
system requirements and licensing
on your system
WebGate on your system
Reactions when detecting viruses and unwanted
programs
7 Service Avira GmbH Support and Service
8 Appendix Glossary of technical terms and abbreviations
1.3 Signs and Symbols
The manual uses the following signs and symbols:
Symbol Meaning
3
X ... shown before a step you have to perform
Golden Rules for Protection against Viruses
... shown before a condition that must be met, prior to
performing an action
... shown before the result that directly follows the preceding
action
... shown before a warning in case there is a danger of critical
data loss or hardware damage
... shown before a note containing particularly important
information, e.g. on the steps to be followed
... shown before a tip that makes it easier to understand and
use Avira AntiVir WebGate
Avira GmbH Avira AntiVir WebGate 5
About this Manual
For improved legibility and clear marking, the following types of emphasis will also
be used in the text:
Emphasis in text Explanation
Ctrl+Alt Key or key combination
/usr/lib/AntiVir/avupdate
ls /usr/lib/AntiVir
Choose component
Select all
http://www.avira.com URLs
Signs and Symbols – Page 5 Cross-reference within the document
1.4 Abbreviations
The manual uses the following abbreviations:
Abbreviation Meaning
ACL Access Control List
FTP File Transfer Protocol
GUI Graphical User Interface
HTTP Hypertext Transfer Protocol
Path and filename
User entries
Elements of the software interface such
as menu items, window titles and
buttons in dialog windows
HTTPS Hypertext Transfer Protocol Secure
ICAP Internet Content Adaptation Protocol
SMTP Simple Mail Transfer Protocol
SNEWS Secure NEWs Server
SSL Secure Sockets Layer
VDF Virus Definition File
Avira GmbH Avira AntiVir WebGate 6
Product Information
2Product Information
Internet connection is an underestimated invasion doorway for malware on your
computer. If you transfer unfiltered data from the Internet on your system, you
can spread all types of malware throughout the entire network.
Avira AntiVir WebGate is a reliable protection for your computer, by scanning,
filtering and if necessary blocking access to all files from the Internet.
Furthermore, Avira AntiVir WebGate also scans the entire outgoing traffic.
Usually company computers access the Internet indirectly, via a proxy server. Avira
AntiVir WebGate co-operates with the proxy server and completes it in an ideal
way.
Right from the beginning, two really important hints:
Losing valuable files usually has dramatic consequences. Not even the best antivirus
software can fully protect you against file loss.
X
Ensure regular backups for your files.
An antivirus program can be reliable and effective only if kept up-to-date.
X
Ensure that you maintain your Avira AntiVir WebGate up-to-date, using
Automatic Updates. You will learn how to do it in this user guide.
Avira GmbH Avira AntiVir WebGate 7
Product Information
2.1 Features
Avira AntiVir WebGate supports a variety of configuration settings for controlling
Internet data transfer. The essential features are:
• Extended access control, for setting rules to allow tunneling for certain types
of requests and responses.
• Local URL filtering, using the categories in Avira URL Filtering library
• Online URL filtering, using the categories in Avira Web Access and Content
Control library (available in Avira WebGate Suite)
• Real-time scanning for viruses/unwanted programs
• Heuristic detection of macroviruses
• Scanning all downloaded files (HTTP and FTP)
• Scanning all outgoing files (e. g. PUT and POST)
• Recognition of all common archive types
• Automatic Internet Update for product, scan engine and VDF
• Configurable notification functions for the administrator (protocol, warnings,
reports); sending email warnings (SMTP)
• Self-Integrity Program Check, which ensures the antivirus system is operating
correctly
• Access control to WebGate using IP addresses
• ICAP support (enables connection through ICAP interface)
2.2 Licensing Concept
You must have a license to use Avira AntiVir WebGate. You are required to accept
the license terms
(see http://www.avira.com/documents/general/pdf/en/avira_eula_en.pdf).
There are 2 license modes for Avira AntiVir WebGate:
• Test version
• Full version
The license depends upon the number of users in the network, which are to be
protected by Avira AntiVir WebGate.
The license is given in a license file named hbedv.key . You will receive it by email
from Avira GmbH. It contains certain data, such as the programs you will use and
the time interval of your license. The same license file may refer to more Avira
products.
Test Version
Full Version
Details about the 30-days Test License can be found on our Website:
http://www.avira.com.
The range of Full Version features includes:
• Download of Avira AntiVir WebGate Versions from the Internet
• License file by email, for activating the Test Version to a Full Version
• Complete installation instructions (digital)
• Four weeks Installation Support, starting from acquisition date
Avira GmbH Avira AntiVir WebGate 8
Product Information
• Newsletter Service (per email)
• Internet Update Service for program files and VDF
After installing an AntiVir product, you can read the information on your current
license, using the license tool avlinfo:
X
Change to /usr/lib/AntiVir and call ./avlinfo
Use avlinfo -h to get information about using this tool.
2.3 Modules and Operating Mode of Avira AntiVir WebGate
Avira AntiVir WebGate security software consists in the following modules:
• AntiVir Engine
•Avira Updater
• WebGate Main Program
• Avira URL Filtering library
• Avira Web Access and Content Control library
AntiVir Engine
AntiVir Engine essentially represents the scanning and repairing modules of Avira
software. These are also used by the other AntiVir products.
Avira Updater
Avira Updater downloads current updates from the AntiVir web servers and
installs them at regular intervals, manually or automatically. It can also send
update notifications by email.
You can update Avira AntiVir WebGate entirely or only certain components:
signatures, engine, scanner.
WebGate Main Program
The Main Program is the actual WebGate function, supervising the HTTP and FTP
network access over the Internet. It detects viruses and unwanted programs using
the AntiVir Engine.
Avira URL Filtering library
AntiVir WebGate uses a local filter to determine if an URL is dangerous, based on
a list of known URLs, grouped in three categories: Malware, Phishing, Fraud. To
increase your security, Avira URL Filter is enabled in every valid WebGate or
WebGate Suite installation.
Avira Web Access and Content Control library
AntiVir WebGate allows clients to filter outgoing requests based on URL
Avira GmbH Avira AntiVir WebGate 9
Product Information
categories, such as Violence, Gambling, Erotic etc. To determine the categories for a
certain URL, the Web Access and Content Control library is used. (This module is
only activated with the license for Avira WebGate Suite.)
To find out more details about the Web Access and Content Control library, please
refer to the MANUAL file within the WebGate installation directory.
2.3.1 System Requirements
Avira AntiVir WebGate asks for the following minimum system requirements:
• Computer: x386, Sparc
• OS: Linux or Sun Solaris
• CPU: 32-bit or 64-bit UNIX
Running AntiVir software on 64-bit UNIX systems, requires the ability to execute 32-bit binaries. For instructions about checking and eventually enabling
this behavior, please refer to the documentation of your UNIX system.
• HD: 100 MB (1 GB or more recommended)
• RAM: 256 MB (1280 MB for Solaris)
• Administration through Avira SMC: Please consider that the libstdc++so.5 is
required for the SMC Agent.
Officially supported distributions for Avira AntiVir WebGate and for Avira
WebGate Suite:
• Red Hat Enterprise Linux 5 Server
• Red Hat Enterprise Linux 4 Server
• Novell Open Enterprise Server (10.2)
• Novell Linux Desktop 9 (NLD 9)
• Novell SUSE Linux Enterprise Server 11 (SLES 11)
• Novell SUSE Linux Enterprise Server 10 - 10.2 (SLES 10)
• Novell SUSE Linux Enterprise Server 9 (SLES 9)
• Debian GNU/Linux 4
• Debian GNU/Linux 5 (stable, lenny)
• Ubuntu Server Edition 8
• Ubuntu Server Edition 9 (intrepid)
• Sun Solaris 9 (SPARC)
• Sun Solaris 10 (SPARC)
• Gentoo
Avira GmbH Avira AntiVir WebGate 10
Installation
3 Installation
You can find the current version of Avira AntiVir WebGate on our website.
Avira AntiVir WebGate is supplied as packed archive. This archive contains the
AntiVir Engine and VDF files, the Avira Updater, the WebGate Main Program and
the optional SMC plug-in.
You are guided through the installation process, step-by-step. This Chapter is
composed of the following Sections:
z Choosing the WebGate Computer – Page 11
z Getting the Installation Files – Page 11
z Licensing – Page 12
z Installing Avira AntiVir WebGate – Page 13
z Reinstalling and uninstalling AntiVir – Page 16
3.1 Choosing the WebGate Computer
Depending on network and hardware configuration, there are more possibilities
for choosing an Avira AntiVir WebGate computer, as a “guard” between the user’s
client and the Internet.
A connection to the proxy server is especially needed, for ensuring a controlled
Internet access.
Avira AntiVir WebGate is adjusted first in terms of network configuration (see
Configuration – Page 18). At the time of the installation, it must be decided on
which computer WebGate will be installed.
If you have also installed Avira AntiVir UNIX Server or Avira AntiVir Professional
(UNIX) and you use the Graphical User Interface to configure and operate these products,
please note that the GUI is not compatible with the current versions (starting with
version 3) of Avira AntiVir UNIX MailGate and Avira AntiVir UNIX WebGate.
3.2 Getting the Installation Files
Downloading the Installation Files from the Internet
Download the current version file from our Website
X
http://www.avira.com/en/downloads/avira_antivir_unix_webgate.html
on your local computer. The file name is
antivir-webgate-prof-<version>.tar.gz.
X
Save the file in a /tmp folder on the computer, on which you want to run
WebGate.
Avira GmbH Avira AntiVir WebGate 11
Installation
Unpacking Program Files
Go to the temporary directory
X
cd /tmp
Unpack the
X
tar -xzvf antivir-webgate-prof-<version>.tar.gz
in the temporary directory will then appear antivir-webgate-prof-<version> .
3.3 Licensing
You must have a license for AntiVir WebGate, in order to use the program (see
Licensing Concept – Page 8). The license comes in a file named hbedv.key.
This license file contains information regarding the range and period of the license.
Purchasing the License
:
AntiVir archive:
X
You can request a 30-day Test License for Avira AntiVir WebGate from our
website (www.avira.com).
You will receive the license file by email.
X
You can easily acquire Avira AntiVir WebGate using our Online Shop (for
details, visit
http://www.avira.com).
Copying the License File
X
Copy the license file hbedv.key in the installation directory on your system:
/tmp/antivir-webgate-prof-<version>.
Avira GmbH Avira AntiVir WebGate 12
Installation
3.4 Installing Avira AntiVir WebGate
Avira AntiVir WebGate installation is performed automatically using an
installation script. This script performs the following tasks:
• Checks integrity of the installation files
• Checks for the required permissions for installation
• Checks for existing installed versions of AntiVir products on the computer
• Copies the program files and overwrites the existing obsolete files
• Copies the configuration files. Existing AntiVir configuration files are kept
• Installs Avira Updater
• Optionally: installs the plug-in for SMC
• Optionally: configures the automatic start of Avira AntiVir WebGate and Avira
Updater
For the first installation, you must follow these steps:
z Preparing Installation – Page 13
z Installing Avira AntiVir WebGate – Page 13
Preparing Installation
X
Login as root. Otherwise you don’t have the required authorization for the
installation and the script returns an error message.
X
Go to the directory where you have unpacked Avira AntiVir WebGate:
cd /tmp/antivir-webgate-prof-<version>
Installing Avira AntiVir WebGate
Depending on the AntiVir products you have already installed on your computer, the
installation procedure may vary.
X
Type:
./install
X
Confirm the License Agreement.
The installation script starts. First, the AntiVir Core Components are
installed:
Do you agree to the license terms? [n] y
creating /usr/lib/AntiVir ... done
copying LICENSE to /usr/lib/AntiVir/LICENSE-webgate ... done
1) installing AntiVir Core Components (Engine, Savapi and Avupdate)
copying uninstall to /usr/lib/AntiVir/ ... done
copying uninstall_smcplugin.sh to /usr/lib/AntiVir/ ... done
Avira GmbH Avira AntiVir WebGate 13
Installation
After you type the path to the key file, the installer continues with updates
configuration:
Enter the path to your key file: [] /root/Desktop/HBEDV.KEY
copying /root/Desktop/HBEDV.KEY to /usr/lib/AntiVir/hbedv.key ... done
installation of AntiVir Core Components (Engine, Savapi and Avupdate) complete
2) Configuring updates
An internet updater is available...
...
Would you like to create a link in /usr/sbin for avupdate ? [y]
X
Type Y.
Then the script can create a cron task for automatic Scanner updates:
linking /usr/sbin/avupdate to /usr/lib/AntiVir/avupdate ... done
Would you like to setup Scanner update as cron task ? [y]
X
Type Y, if you want to create these cron tasks.
Then eventually select the interval to check for updates:
Please specify the interval to check.
Recommended values are daily or 2 hours.
available options: d [2]
X
Type Enter, if you want to check for updates every 2 hours,
or type d, if daily.
Then the script asks, if you want to check for product updates once a week:
creating Scanner update cronjob ... done
Would you like to check for WebGate updates once a week ? [n]
X
Type Y, if you want to create this task.
The next step of the installation process is installing the main program:
creating WebGate update cronjob ... done
setup internet updater complete
3) installing main program
copying doc/avwebgate_en.pdf to /usr/lib/AntiVir/ ... done
copying bin/linux_glibc22/avwebgate.bin to /usr/lib/AntiVir/ ... done
Avira GmbH Avira AntiVir WebGate 14
Installation
The program is installed. Then you are asked if you want to create a link to
avwebgate and if the Updater should be automatically activated at system
start:
Would you like to create a link in /usr/sbin for avwebgate ? [y]
linking /usr/sbin/avwebgate to /usr/lib/AntiVir/avwebgate ... done
Please specify if boot scripts should be set up.
Set up boot scripts [y]:
X
Confirm with Enter. You can change these settings later.
The automatic system start is configured:
setting up boot script ... done
installation of main program complete
Then you are asked if you want to install WebGate with the optional plug-in
for AntiVir Security Management Center.
4) activate SMC support
If you are going to use AVIRA Security Management Center (SMC)
to manage this software remotely you need this
Would you like to activate SMC support? [y]
If you are using Avira SMC:
X
Type Y or confirm with Enter.
The plug-in is installed and the installation process completed:
Installation of the following features complete:
AntiVir Core Components (Engine, Savapi and Avupdate)
AVIRA Internet Updater
AVIRA WebGate
AntiVir SMC plugin
X
Finally, you can start Avira AntiVir WebGate:
/usr/lib/AntiVir/avwebgate start
Modified binaries will not run.
For example, if binaries are prelinked: Either disable prelinking or add
/usr/lib/AntiVir as an excluded prelink path in /etc/prelink.conf.
Starting with version 3.0.0, a new scanner backend is used. Old scanner specific
configuration options, that are not known to WebGate, must be moved from
/etc/avwebgate.conf
to the scanner specific configuration file
/etc/avwebgate-scanner.conf.
Avira GmbH Avira AntiVir WebGate 15
Loading...