This Knowledgebase article provides general information about interoperability with anti-virus scanners.
In general, Neverfail recommends where possible using one of the supported Anti-Virus products. Please see Knowledgebase article #2 - 'Third-Party Applications Supported by Neverfail' for a list of specific Anti-Virus products supported by Neverfail. If using an unsupported Anti-Virus product, the general advice below should be followed. However, the Neverfail Group may be unable to resolve support calls arising out of interaction with such products.
Please consult and implement the Anti-Virus manufacturer’s advice, as Neverfail guidelines will often follow these recommendations.
- File Level Anti-Virus should not be used to protect application server databases; for example, Microsoft Exchange databases, and Microsoft SQL Server databases. The nature of database contents can cause false positives in virus detection leading to failure of database applications and data integrity errors. Performance will also be affected. See the Microsoft knowledge base references at the end of this article.
- Neverfail recommends that when implementing Neverfail Heartbeat, File Level Anti-Virus temp files should not be replicated by Neverfail Heartbeat.
- The File Level Anti-Virus software running on the Primary server must be the same as the software that runs on the Secondary server. In addition, the same File Level Anti-Virus must run during both active and passive roles.
- The File Level Anti-Virus should be configured to use the management IP address on the passive server for virus definition updates. If this is not possible, it may be necessary to update Virus Definitions manually on the passive server.
- After installation of Neverfail Heartbeat, any changes made to the configuration of file level scanning on the active server must be repeated manually on the passive server.
- If File Level Anti-Virus is installed with Exchange components and they share the same common virus definitions, then the plug-in for the Application Anti-Virus should be set to exclude the virus definitions.
- The following Neverfail directories must be excluded from File Level Anti-Virus Scans:
- C:\Program Files\Neverfail\R2\logs
- C:\Program Files\Neverfail\r2\log
- C:\Program Files\Neverfail\R2\FSMTemp - Note: This directory and its contents are deleted by the File State Manager when not in use.
- C:\NFPAGFIL.sys - Note: This file does not exist post version 4.4 of Neverfail Heartbeat.
See Knowledgebase article #146 - How to retrieve the Neverfail Heartbeat logs and other useful information for Support purposes, for further information on log files.
The following Microsoft knowledge Base articles should also be consulted:
Neverfail Knowledgebase articles relating to specific Anti-Virus products
Knowledgebase article #209 - Symantec Anti-Virus Specific Advice
Knowledgebase article #210 - Sophos Anti-Virus Specific Advice
Knowledgebase article #211 - McAfee Anti-Virus Specific Advice
Knowledgebase article #212 - Trend Anti-Virus Specific Advice
Knowledgebase article #1221 - eTrust Antivirus (CA Antivirus) Specific Advice
Knowledgebase article #1238 - TrendMicro OfficeScan Corporate Editition Specific Advice