setting update antivirus apm

Question

hiHow to check antivirus update version on apm, i want to makesurevthe setting if client have older antivirus should be automatically or no?&nbsp;thanks

zamroni777 · Answer

the opswat epsec is basically plugin that enables apm client app to read antivirus status.
therefore, epsec cannot force the av autoupdate.

if you are using enterprise av, usually the auto update is controlled by policy.
i suggest you set it to everyday or less because av signature is updated daily nowadays.
and allow clients to download the update from internet in addition to dowload from intranet av servers.

lucas_thompson · Answer

Here's an article about how to check the version:
https://my.f5.com/manage/s/article/K14207
&nbsp;
&nbsp;
Here's an article about how to update it:
https://my.f5.com/manage/s/article/K48955220
&nbsp;

anzine321 · Answer

hiThanks for informationIs that mean antivirus base on epsec list ? for example client connect to apm and have older version and the client should upgrade version bevore access to apm ?

aswin_mk · Answer

You can use above KB and below article - Endpoint inspection | BIG-IP Edge Client operations guide (f5.com)

when CLIENTSSL_HANDSHAKE {
# Placeholder for checking client's antivirus status
# You would need to implement a way to get the client's antivirus status
set antivirus_status [HTTP::header "X-Client-Antivirus-Status"]

if { $antivirus_status eq "outdated" } {
reject
}
}

also you can try this in lab or sanbox.

Forum Discussion

setting update antivirus apm

4 Replies

Recent Discussions

How to check the interface configuration of instances.

Difference between BT(Upgraded to ADD-ASMAWF ) vs BTA device

F5 BIG-IP Lab License in the UK

Invalid Character

F5 Rules for AWS WAF

Related Content

Auditing Security Policy Updates

F5 ICAP over SSL/TLS (Secure ICAP) with F5 ASM/AWAF Antivirus Protection feature

Setting up BIG-IP with AWS CloudHSM

Update your DevCentral user profile

Setting up persistence in F5 XC