14.2  Choosing an external module for an antivirus program

Parameters for antivirus control are set in Configuration → Content Filter → Antivirus. To use an external antivirus program, check Use external antivirus. This menu shows the antivirus software which can be used for email scanning. The antivirus software must be installed prior to making a selection (we recommend stopping the Kerio MailServer Engine before the antivirus installation).

The installed antivirus may not be run automatically. In such case, use the Options button to specify advanced settings of the external antivirus program.

Warning

If the external Symantec Antivirus Scan Engine is selected, it is necessary to define the IP address and port of the computer used by the antivirus in the Options dialog box.

The following conditions must be met so that the antivirus is properly run:

The interface between Kerio MailServer and an antivirus program consists of special modules (one for each antivirus). The mailserver administrator must select the appropriate module for the antivirus to be used. If a module is selected and the corresponding antivirus is not installed of does not work properly, Kerio MailServer does not allow saving these settings. The message stating that the antivirus control is not functional appears in the Error log.

Note: There are two exceptions to this behavior: incorrectly transferred configuration of Kerio MailServer (for more information, see chapter 31.2  Moving configuration and data to another computer), or less licenses of antivirus than the licenses of Kerio MailServer. In such cases, Kerio MailServer will work normally, but it will not be able to send messages. This is because Kerio MailServer wants to perform an antivirus check after receipt, but the antivirus does not work. The message stating that the antivirus control is not functional appears in the Error log.

In order for Kerio MailServer and antivirus program to cooperate properly, specify an exception for the store directory (or also for the *.eml files in case of older versions of some antiviruses), so that the messages are not checked by the antivirus engine.

If the resident shield was set incorrectly, a dialog box is opened. The resident shield also detects the eicar.com file (a testing antivirus generated by Kerio MailServer to check for proper settings of an exception in the resident shield).