Using the help file I have been able to force a DAP to check for the existance of an AV program...
assert( function() for k,v in pairs(endpoint.av) do if (EVAL(v.exists, "EQ", "true", "string")) then return CheckAndMsg(false, "AV Not Installed.", "AV Installed") end end return CheckAndMsg(true, "Please install antivirus software before connecting.", "Good, AV Installed") end)()
This JUST checks for the existance of AV. I have not had any luck combining this with checking for up to date defininitions of any AV client (I'm not a programmer!).
Has anyone done this, or have hints for getting this working?
That's close to what I found online somewhere, I don't remember where now to give propper credit...this works for any AV program. I did have to upgrade to a beta version of CSD to get some AV's to work, notably AVG. This is set to 7 days.
assert(function() local block_connection = true local update_threshold = "604800" for k,v in pairs(endpoint.av) do if CheckAndMsg(EVAL(v.exists, "EQ", "true", "string"), nil, k.." is not enabled") then if CheckAndMsg((type(v.lastupdate) == "string" and tonumber(v.lastupdate) ~= nil), nil, "No virus definition file information was received for "..k) then if CheckAndMsg(EVAL(v.lastupdate, "LT", update_threshold, "integer"), nil, k.." is enabled. The virus definition file was updated "..string.sub((tonumber(v.lastupdate)/86400), 1, 3).." days ago. Please update to current signatures.") then block_connection = false end end end end return block_connection end)()
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...