ProSecure Web/Email Security Threat Management (STM) Appliance Reference Manual
Content Filtering and Optimizing Scans 4-25
v1.0, September 2009
Table 4-10. Malware Scan Settings
Setting Description
Action
HTTP and
HTTPS
Action From the HTTP or HTTPS pull-down menu, specify one of the following
actions when an infected Web file or object is detected:
•Quarantine file. The file is placed in quarantine, a malware quarantine log
entry is created, and depending on the nature of the malware threat, also a
virus log entry or a spyware log entry.
• Delete file. This is the default setting. The Web file or object is deleted, and
depending on the nature of the malware threat, a virus log entry or a
spyware log entry is created.
• Log only. depending on the nature of the malware threat, only a virus log
entry or a spyware log entry is created. The Web file or object is not placed
in quarantine nor deleted.
Streaming Select the Streaming checkbox to enable streaming of partially downloaded
and scanned HTTP or HTTPS file parts to the end user. This method allows
the user to experience more transparent Web downloading. Streaming is
enabled by default.
Scan Exceptions
From the pull-down menu, specify one of the following actions when a file or message exceeds the size
that you specify in the file size field:
• Skip. The file is not scanned but skipped, leaving the end user vulnerable. This is the default setting.
• Block. The file is blocked and does not reach the end user.
The default and maximum file sizes are:
• For the STM600 and STM300, the default setting is to block any attachment larger than 10240 KB.
The maximum file size that you can specify is 51200 KB.
• For the STM150, the default setting is to block any attachment larger than 8192 KB. The maximum file
size that you can specify is 25600 KB.
Note: Setting the maximum file size to a high value might affect the STM’s performance. NETGEAR
recommends the default value, which is sufficient to detect the vast majority of threats.
HTML Scan
Scan HTML
Files
Select this checkbox to enable scanning of HyperText Markup Language (HTML) files,
which is enabled by default.
Notification Settings
Select the Replace Page with the Following Warning Text checkbox to enable the STM to replace the
content of a Web page that is blocked because of a detected malware threat with the following text:
NETGEAR ProSecure Web/Email Security Threat Management Appliance has detected and stopped
malicious code embedded in this web site for protecting your computer and network from infection.
%VIRUSINFO%