Operation Modes

Top  Previous  Next

Dr.Web Anti-virus for Linux can operate both in Standalone mode and as a part of an anti-virus network managed by a central protection server. Operation in Central protection mode does not require installation of additional software or Dr.Web Anti-virus for Linux reinstallation or removal.

In Standalone mode, the protected computer is not connected to an anti-virus network and its operation is managed locally. In this mode, configuration and license key files reside on local disks and Dr.Web Anti-virus for Linux is fully controlled from the protected computer. Updates to virus databases are received from Dr.Web GUS servers.
In Central Protection mode, protection of the computer is managed by the central protection server. In this mode, some functions and settings of Dr.Web Anti-virus for Linux can be adjusted in accordance with the general (corporate) anti-virus protection policy implemented in the anti-virus network. The license key file used for operating in Central protection mode is received from the central protection server. The key file stored on the local computer, if any, is not used. Statistics on virus events is sent to the central protection server. Updates to virus databases are also received from the central protection server.
In Mobile modeDr.Web Anti-virus for Linux receives updates from the Dr.Web GUS servers, but operation of Anti-virus is managed with the local settings. The used key file is received from the central protection server.

When Anti-virus is operating in Central protection or Mobile mode, the following options are blocked:

1.Deletion of a license key file in License Manager;
2.Manual start of an update process and adjustment of update settings;
3.Configuration of file system scanning parameters.

Configuration of SpIDer Guard settings as well as an option to enable or disable SpIDer Guard checks are allowed in dependence on permissions specified on the server.

warning

Note that if launch of scanning at user request is prohibited on the used central protection server, the Scan page of the Anti-virus window will be disabled. Moreover, in this case the Scheduler will not launch scans even if they are scheduled.

 

Logical Structure of Anti-Virus Networks

Doctor Web solutions for central protection use client-server model (see the picture below).

Workstations and servers are protected by local anti-virus components (herein, Dr.Web Anti-virus for Linux) installed on them, which provides for anti-virus protection of remote computers and allows connection between the workstations and the central protection server.

sheme.zoom57

1

Central protection server

6

Network based on TCP, NetBIOS

2

Dr.Web anti-virus network administrator

8

Transmitting updates via HTTP

3

Protected local computer

 

 

7

Dr.Web GUS

 

 

Picture 1. Logical structure of the Anti-Virus Network

Local computers are updated and configured from the central protection server. The stream of instructions, data and statistics in the anti-virus network goes also through the central protection server. The volume of traffic between protected computers and the central server can be quite sizeable, therefore solutions provide options for traffic compression. To prevent leak of sensitive data or substitution of software downloaded onto protected computers, encryption is also supported.

All necessary updates are downloaded to the central protection server from Dr.Web GUS.

Local anti-virus components are configured and managed from the central protection server according to commands from anti-virus network administrators. Administrators manage central protection servers and topology of anti-virus networks (for example, validate connections to the central protection server from remote computers) and configure operation of local anti-virus components when necessary.

warning

Local anti-virus components are not compatible with anti-virus products of other companies or anti-virus solutions of Dr.Web if the latter do not support operation in Central protection mode (for example, version 5.0 of Dr.Web Anti-virus for Linux). Installation of two anti-virus programs on the same computer can cause a system crash and loss of important data.

Connecting to Anti-Virus Network

Dr.Web Anti-virus for Linux can be connected to an anti-virus network in one of the following ways:

During Dr.Web Anti-virus for Linux activation – in the License Manager
On the Mode tab of the settings window in the Dr.Web Anti-virus for Linux graphical interface

If Dr.Web Anti-virus for Linux is a part of the anti-virus network, you can switch Anti-virus operation between Mobile and Central protection modes. For that purpose, use the esmobile command of the command-line management tool – drweb-ctl.

Disconnecting from Anti-Virus Network

Dr.Web Anti-virus for Linux can be disconnected from the anti-virus network in one of the following ways:

On the Mode tab of the settings window in the Dr.Web Anti-virus for Linux graphical interface