No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search


To have a better experience, please upgrade your IE browser.

Knowledge Base

How to Configure AV Function in the USG for UTM Demo.

Publication Date:  2012-07-21  |   Views:  971  |   Downloads:  0  |   Author:  anliku  |   Document ID:  EKB1000010388


Issue Description

1,How to do a UTM demo for customer
2,How to configure the AV function in USG
3,How to test the AV demo result.

Alarm Information


Handling Process

Configure the USG2200 as follows:
Step 1Set the IP addresses of the interfaces, define routing polices, and add routes to the routing table.
interface GigabitEthernet0/0/0
ip address
interface GigabitEthernet0/0/1
ip address
firewall zone trust
set priority 85
add interface GigabitEthernet0/0/0
firewall zone untrust
set priority 5
add interface GigabitEthernet0/0/2 
firewall policy interzone trust untrust outbound
policy 1
policy source mask 24
action permit
Step 2 Configure a AV policy.
Step 1
Build a policy name “test” for AV

  Step 2
Enable AV http detection

Step 3
Enable AV function and apply it

Step 4
Enable AV function in firewall public policy and apply it

                      Step 3     TestStep 1
Open the http server and upload AV file

Step 2
Use HTTP client to download AV file from HTTP server
 Step 4     Demo effect

Root Cause

Networking in lab environment:
As shown in the following figure, USG firewall have separated two networks.One is,another is demo is HTTP Client get AV file from the HTTP server,the file include virus.If enabling AV function in USG,and it can block it.The customer can find the warning form USG.