What complements are necessary for VPN-1/FireWall-1 NG to scan e-mail, passing through the
firewall, for macro viruses?
A.
UFP and OPSEC-certified scanning product.
B.
CVP and OPSEC-certified virus scanning product.
C.
UFP and CVP.
D.
UFP, CVP and OPSEC-certified content filter.
E.
None of the above, VPN-1/FireWall-1 NG scans for macro viruses by default.
Explanation:
since we want to scan e-mail and check for viruses, all we need is a product that check for certain
virus fingerprints, this products is the OPSEC certified Application and we link it with the firewall
module with CVP (Content Vectoring Protocol). The most common in enterprise environments is to
have a second server with a crossover cable to the firewall running this virus checking application,
this is also a best practice.
Incorrect Answers:
A: UFP (URI Filtering Protocol) is not used for Virus scanning, it is usually for Content
Management with applications like WebSense to restrict access to some URI´s (URL´s).
C: We don’t need both of them, we can provide the functionality only with CVP.
D: We don’t need UFP for this.
E: This is not a functionality provided by default you need to use an OPSEC application connected
by Content Vectoring Protocol.