I a very new to NetApp so i will do my best to explain our current setup.
Release Version - 8.1.4 7-Mode
Model - 3210 (x2 HA Pair)
VSES - 188.8.131.52 (Mcafee Enterprise Storage 2xScanning Servers)
We have created a private Interface group for the AV traffic - i add the private network IP's to the vFilers.
We have also set the following vscan variables on the filer (Do they need to be set on a vFILER level too?):
VSCAN OPTIONSTIMEOUT = 10 SECONDSABORT_TIMEOUT = 50 SECONDSMANDATORY_SCAN = OFFVLIENT_MSGBOX = OFF
TIMEOUT = 40THREADS = 150
Nothing is enabled as of yet, we had issues previously where we had file locks and i believe this is down to the Mandatory_scan = On (Now off!)
Question is, how do i limit what is scanned? do i have to enable vscan on the filer and vfiler ? & Add the private network IP/s to the Mcafee EPO policy ?
Also if anyone could recomend any changes to our vscan details above it would be appreciated
You can refer Antivirus Scanning in Data ONTAP 7-Mode Best Practices Guide, http://www.netapp.com/us/media/tr-3107.pdf
Join our Discord Community