Dell NX3500 Riding Toy User Manual


 
8
FluidFS 3.0 Data Protection
Managing the Anti-Virus Service
The FluidFS cluster antivirus service provides realtime antivirus scanning of files stored in CIFS shares.
The antivirus service applies only to CIFS shares; NFS is not supported. The scan operation is transparent
to the client, subject to the availability of an antivirus server.
A file is scanned only when a client tries to open the file (not when an infected file is written, a file is
opened to read/modify attributes, old files are opened for rewrite, and so on).
The antivirus service consists of two components:
One or more networkaccessible computers running a supported thirdparty, ICAPenabled antivirus
application to provide the antivirus scanning service to the FluidFS cluster.
A FluidFS cluster antivirus scanning policy that specifies file extensions and directories to exclude
from scans, an antivirus scanning file size threshold, and whether to allow or deny files larger than
the file size threshold.
When a CIFS share client requests a file from the FluidFS cluster, the FluidFS cluster passes the file to an
antivirus server for scanning and then takes one of the following actions:
If the file is virusfree, the FluidFS cluster permits client access. The FluidFS cluster does not scan that
file again, providing it remains unmodified since the last check.
If the file is infected, the FluidFS cluster denies client access. There is no indication to the client that
the file is infected. The client experience is:
A file deletion returns a systemspecific ʺfile not foundʺ state for a missing file, depending on the
client’s computer.
An access denial might be interpreted as a file permissions problem.
Only storage administrators can recover an uninfected version of the file, or access and process the
infected file. To gain access to an infected file, you must connect to the CIFS share through another CIFS
share on which the antivirus service is disabled. Otherwise, the FluidFS cluster recognizes the file as
infected, and denies access. You may also access the file through an NFS export, because NFS does not
support antivirus.
File transfers between the FluidFS cluster and the antivirus server are not encrypted. Therefore, Dell
recommends protecting/restricting the communication.
119