Kaspersky Security for Internet Gateway

  • SKU: KSECINTGAT

Provides secure Internet access for all employees in the organization, automatically removing malicious and potentially hostile programs from incoming HTTP/FTP traffic.

Kaspersky Security for Internet Gateway provides secure Internet access for all employees in the organization, automatically removing malicious and potentially hostile programs from incoming HTTP/FTP traffic.

  • Reliable protection from malicious and potentially hostile programs
  • Real-time scanning of Internet traffic (via HTTP/FTP protocols)
  • Filtration of Internet traffic based on a trusted server list, by object type and user group
  • Isolation of infected and suspicious objects
  • Convenient administration system
  • System for reporting on component status
  • Scalability
  • Automatic updating of databases

Product Components

  • Kaspersky Anti-Virus for Check Point FireWall-1
    Provides high-quality antivirus protection for all HTTP, FTP and SMTP traffic that passes through Check Point Firewall-1. The solution detects malicious programs, spyware, adware and joke programs, etc.
  • Kaspersky Anti-Virus for Microsoft ISA Server
    Provides comprehensive scanning of data entering the local area network from the Internet via HTTP and FTP protocols. The application supports all popular versions of Microsoft ISA Server.
  • Kaspersky Anti-Virus for Proxy Server
    Protects all HTTP and FTP Internet traffic that passes though the proxy server. The application provides security for users when working online and deletes malicious programs and worms that spread via instant messaging programs.
  • Kaspersky Administration Kit
    Dynamic and flexible tool for centralized management of Kaspersky Lab applications on a corporate network. Kaspersky Administration Kit was expressly designed to meet the needs of networks of any size or complexity. This tool enables central administration of dynamic networks that number tens of thousands of nodes, extending to remote access and laptop users.

 

Kaspersky Security for Internet Gateway – Features

Kaspersky Security for Internet Gateway provides secure Internet access for all employees in the organization, automatically removing malicious and potentially hostile programs from incoming HTTP/FTP traffic.

  • Reliable protection from malicious and potentially hostile programs
  • Real-time scanning of Internet traffic (via HTTP/FTP protocols)
  • Filtration of Internet traffic based on a trusted server list, by object type and user group
  • Isolation of infected and suspicious objects
  • Convenient administration system
  • System for reporting on component status
  • Scalability
  • Automatic updating of databases

Product Components

Kaspersky Anti-Virus for Check Point FireWall-1 Kaspersky Anti-Virus for Microsoft ISA Server Kaspersky Anti-Virus for Proxy Server Kaspersky Administration Kit

Kaspersky Anti-Virus for Check Point FireWall-1

Kaspersky Anti-Virus for Check Point Firewall-1 provides high-quality antivirus protection for all HTTP, FTP and SMTP traffic that passes through Check Point Firewall-1. The solution detects malicious programs, spyware, adware and joke programs, etc.

Functions

Antivirus protection

Antivirus scanning of incoming and outgoing traffic. The application scans incoming and outgoing traffic for viruses, processing CVP requests from the firewall. Objects scanned include web traffic, email bodies and attachments, including compressed and archived files. The program detects not only infected objects, but also objects that can be classed as suspicious, protected or damaged.

Protection from potentially hostile programs. Administrators can choose to use either a standard or extended set of antivirus databases. This enables the program to detect not only malicious programs, but also potentially hostile software, spyware, joke programs, etc.

Excluding file types for faster scanning. It is possible to exclude archive files from scanning altogether, or to configure the program to scan only archives below a certain nesting level. The program can be configured to scan only certain types of files (file type is defined by the internal structure), which means that only objects prone to infection are scanned.

Limiting time spent on scanning each object. The administrator can set a maximum time for scanning each object to minimize any disruption to the user.

On-the-fly scanning. To increase the application’s performance, objects are scanned in RAM without saving them on the hard drive.

Intelligent algorithms. During scanning, safe objects are forwarded to the end user using intelligent algorithms that speed up the application’s operation without sacrificing detection quality.

Processing options for infected objects. Infected objects can either be deleted or treated. It is also possible to disregard the scan result — that is, to send the object to the end user without processing.

Backup copies. Before infected objects are processed (treated or deleted), it is possible to create backup copies of them. The administrator can configure backup copying for each data transfer protocol separately.

Administration and configuration

Convenient administration. The administrative interface is based on Microsoft Management Console 1.2, which is a familiar tool for most system administrators.

Scalability. The system administrator can choose to run multiple copies of the antivirus engine and multiple CVP servers (which can operate on different physical servers).

Automatic updates to antivirus databases. Updates to antivirus databases can be downloaded to workstations directly from Kaspersky Lab servers or from a folder on the local network. If updates are damaged or incomplete, it is possible to roll back antivirus databases to a previous intact version.

Sophisticated notification system. The product can send notifications to the system administrator about any critical events in the application’s operation, either using the standard tools in Check Point Firewall-1® or via email.

Improved reporting system. Flexible settings for configuring statistics and reports allow the system administrator to choose the desired detail for data collection and reports.

Free technical support. Registered users have access to Kaspersky Lab’s free technical support service by telephone or email. Technical specialists are available round-the-clock to answer questions related to the installation, configuration and use of the product in English, French, German and Russian.

Kaspersky Anti-Virus for Microsoft ISA Server

Kaspersky Anti-Virus for Microsoft ISA Server provides comprehensive scanning of data entering the local area network from the Internet via HTTP and FTP protocols.

The application supports all popular versions of Microsoft ISA Server:

  • Microsoft ISA Server 2006 Standard Edition
  • Microsoft ISA Server 2006 Enterprise Edition
  • Microsoft ISA Server 2004 Standard Edition
  • Microsoft ISA Server 2004 Enterprise Edition
  • Microsoft ISA Server 2000 Standard Edition
  • Microsoft ISA Server 2000 Enterprise Edition

Features

Comprehensive antivirus protection

  • Real-time antivirus scanning. The program scans for and removes all types of malicious programs in data traffic transferred via the Microsoft ISA Server. Objects scanned include archived and compressed files in practically any formats.
  • Detection of potentially hostile software. The application provides protection not only from viruses, but from potentially hostile software as well, including advertising programs, software that collects information on user computers, utilities for remotely monitoring and controlling victim computers and other utilities used by cybercriminals. Such software can be detected by scanning using the extended antivirus databases.
  • Advanced technologies. Kaspersky Anti-Virus for Microsoft ISA Server uses the latest technologies to protect users from malicious programs. As comparative tests have shown, the Kaspersky® Anti-Virus Engine on which the solution is based provides detection rates that are among the world’s highest.
  • Protection of server arrays (Only available with Microsoft ISA Server Enterprise Edition ). Kaspersky Anti-Virus for Microsoft Server is an optimal solution for reliable protection of ISA servers that operate as array members. Management of protection settings and updating of antivirus databases is performed centrally for all servers in the array.

Optimized performance

  • Launching several copies of the antivirus engine. Several copies of the antivirus engine can be run simultaneously on multi-processor servers (by default, four copies of the antivirus engine run at the same time). This enables the application to scan large volumes of data without reducing the ISA server’s performance.
  • Selection of objects to be scanned and trusted servers. To reduce server load, the administrator can exclude object types that are not potentially dangerous from scanning. The application can also be configured to not scan traffic transferred from servers included on the trusted server list.
  • Configuration of group rules. The administrator can create user groups and configure scanning rules separately for each group, depending on the security policy in place in the organization.
  • Optimization for Intel Xeon ( Only available with Microsoft ISA Server 2004 Standard/Enterprise Edition). Kaspersky Anti-Virus for Microsoft ISA Server Enterprise Edition is optimized for multi-processor servers based on the Intel Xeon technology. The application’s scalability and high performance make it an optimal choice in high load environments.

Flexible administration

  • Centralized administration. The application can be administered either locally or remotely. The administrator can configure protection parameters for all servers in the array (Microsoft ISA Server Enterprise Edition only), define security policies for each user group, view reports on the application’s operation and update antivirus databases.
  • Notification and reporting system. Kaspersky Anti-Virus for Microsoft ISA Server uses the Windows performance counters as a monitoring tool. All important messages related to the operation of Kaspersky Anti-Virus are recorded in the Windows application log.
  • Automatic updates. The antivirus database and program modules can be updated centrally. Depending on the application’s settings, the updating process is initiated automatically or on demand, over the Internet from dedicated Kaspersky Lab servers or from local update servers specified by the administrator. Kaspersky Lab releases updates each hour.

Kaspersky Anti-Virus for Proxy Server

Kaspersky Anti-Virus for Proxy Server protects all HTTP and FTP Internet traffic that passes though the proxy server.

The application provides security for users when working online and deletes malicious programs and worms that spread via instant messaging programs.

Functions

Protection from viruses, Trojans and spyware

Real-time scanning of Internet traffic. The program detects and deletes all types of viruses, worms, Trojans and other malicious programs in traffic that passes through most types of proxy servers.

Choice of filtration parameters. The program includes a wide choice of filtration parameters (IP and URL addresses, MIME types and file size), which can be used to create individual scanning rules for different user groups.

Scanning of archived files. Kaspersky Anti-Virus provides the highest quality detection and treatment of viruses in any type of file or attachment. The program supports more than 70 formats for archivers (over 420 versions) and more than 260 types of compressed file formats (over 1,330 versions).

Detection of potentially harmful programs. Using the extended protection option, the application can detect and delete not only known malicious programs, but also potentially harmful programs (such as spyware).

Flexible administration

Remote administration. The application can be administered remotely via the web interface or via a single configuration file.

Group security policies. The administrator can set individual traffic filtration rules for each user group, which defines permission rules in line with the corporate security policy and employee requirements.

User notifications. The program automatically blocks any infected objects and sends the user a notification in the form of an HTML page. The system administrator can configure the content, format and language of notifications.

Reports and statistics. The application can compile statistical reports to help administrators track virus activity and monitor the application’s performance.

Configurable update modes. Updates to antivirus databases and program modules are available on demand, automatically or on schedule. They can be downloaded directly from Kaspersky Lab servers via the Internet or from a local corporate server.

High reliability. Protection from memory leaks, hardware conflicts, input/output errors and critical system conflicts ensures fast and stable application performance.

Kaspersky Administration Kit

Kaspersky Administration Kit is a dynamic and flexible tool for centralized management of Kaspersky Lab applications on a corporate network.

Kaspersky Administration Kit was expressly designed to meet the needs of networks of any size or complexity. This tool enables central administration of dynamic networks that number tens of thousands of nodes, extending to remote access and laptop users.

Functions

Product philosophy

Versatility and scalability. Kaspersky Administration Kit allows for the effective management of antivirus protection on networks of any complexity and configuration. The tool allows communication between administrative servers and clients on networks with dedicated lines, VPN, firewalls and proxy servers.

Single-point administration. Deploying antivirus protection, setting parameters for groups and individuals, updating antivirus databases and program modules, monitoring system status and responding effectively to critical situations – these as well as other administrative tasks can all be carried out from the administrator’s workstation.

Continuous control. Data on administrative servers and client computers (including laptops) is regularly synchronized to ensure compliance with the company’s security policy and server settings. This also ensures that administrators receive up-to-the-minute information on network incidents, even when they are not in the office (via SMS, for example).

Minimal disruption. Administration of antivirus protection should be barely perceptible to the end user. With Kaspersky Administration Kit, administrators can perform all tasks related to deploying and maintaining the company’s antivirus protection remotely, without having to disrupt end users’ work.

Tightened security. A number of additional safeguards for the administrative network help to harden network security: configuration of administrator role and task definitions, auditing of administrative activities and data exchange via SSL. Moreover, by operating the antivirus program in non-interactive mode, administrators can ensure that users do not make local changes to application settings that could put the network at risk.

Simplified administration. The system is administered via the Microsoft Management Console (MMC), which is a familiar tool for network administrators. A choice of wizards is available to simplify integration and setup of the solution. There is also the option of making backup copies of the database and all application settings, which saves the administrator time when re-installing the program. Moreover, color-coded graphic reports make for easy reading.

Functions

Remote installation. There is a choice of methods for installing antivirus solutions. Computers can be added to the administration group either manually or automatically, using the physical network structure, Active Directory service or IP address ranges.

Centralized administration of applications. Configuring parameters for applications across all nodes on the managed network (including laptops) and updating antivirus databases and program modules can be carried out centrally, from the administrator’s workstation.

Monitoring antivirus protection. Administrators can plan how the program will respond to specific events, for instance by sending notifications via email. Copies of infected files and suspicious objects are saved in backup folders, which are accessible to administrators via a single console.

Security policies for laptops. Administrators can create a special security policy for laptop users, which will activate as soon as the laptop disconnects from the corporate network (for example, when an employee is away on business or vacation).

Support for Cisco Network Admission Control (NAC). If the security settings of a mobile device (e.g., a laptop or PDA) do not meet the requirements of the security policy established on the local network, Cisco NAC can deny network access to the device, place it in quarantine or grant it limited access to network resources.

Training and support

Product training. Product training is available from Kaspersky Lab local offices. Courses train system administrators to install and maintain antivirus protection based on Kaspersky Lab products.

Free technical support. Kaspersky Lab customers can receive free technical support in English, French, German or Russian via telephone or email. If necessary, the company guarantees to provide an exclusive treatment module or security confirmation within 24 hours.

Kaspersky Security for Internet Gateway – System Requirements

System Requirements

Kaspersky Anti-Virus for Check Point FireWall-1 Kaspersky Anti-Virus for Microsoft ISA Server Kaspersky Anti-Virus for Proxy Server Kaspersky Administration Kit

Kaspersky Anti-Virus for Check Point FireWall-1

Hardware requirements Software requirements
Administration server
  • Intel Pentium processor, 300 MHz or higher;
  • At least 512 MB available RAM
  • At least 20 MB available disk space for program installation (not including space needed for backup storage and other folders needed for the program’s operation)
  • At least 1 GB available disk space for backup storage of files and temporary storage of data awaiting scanning).
  • Microsoft Windows 2000 Professional with Service Pack 4 or higher
  • Microsoft Windows XP Professional Edition with Service Pack 2 or higher
  • Microsoft Windows 2000 Server with Service Pack 4 or higher
  • Microsoft Windows 2000 Advanced Server with Service Pack 4 or higher
  • Microsoft Windows Server 2003 Standard Edition or higher
  • Microsoft Windows Server 2003 Enterprise Edition or higher.
Management console
  • Intel Pentium II processor, 300 MHz or higher
  • 256 MB RAM;
  • 10 MB available on the hard drive.
  • Microsoft Windows 2000 Professional with Service Pack 4 or higher
  • Microsoft Windows XP Professional Edition with Service Pack 2 or higher
  • Microsoft Windows 2000 Server with Service Pack 4 or higher
  • Microsoft Windows 2000 Advanced Server with Service Pack 4 or higher
  • Microsoft Windows Server 2003 Standard Edition or higher
  • Microsoft Windows Server 2003 Enterprise Edition or higher.

Kaspersky Anti-Virus for Microsoft ISA Server

Hardware requirements Software requirements
Microsoft Internet Security and Acceleration Server 2006 Standard Edition
  • CPU: Intel Pentium III 550MHz
  • 512 MB RAM
  • At least 50 MB available HDD space for installation of the application
  • At least 200 MB available HDD space for temporary storage of data prior to antivirus scanning
  • Microsoft Windows Server 2003 with Service Pack 1
  • Microsoft Windows Server 2003 R2
Microsoft Internet Security and Acceleration Server 2006 Enterprise Edition
  • CPU: Intel Pentium 733MHz
  • 512 MB RAM
  • At least 50 MB available HDD space for installation of the application
  • At least 200 MB available HDD space for temporary storage of data prior to antivirus scanning
  • Microsoft Windows Server 2003
Microsoft Internet Security and Acceleration Server 2004 Standard Edition
  • CPU: Intel Pentium III 550MHz
  • 512 MB RAM
  • At least 50 MB available HDD space for installation of the application
  • At least 200 MB available HDD space for temporary storage of data prior to antivirus scanning
  • Microsoft Windows Server 2000 with Service Pack 4 or higher
  • Microsoft Windows Server 2003
Microsoft Internet Security and Acceleration Server 2004 Enterprise Edition
  • CPU: Intel Pentium 733MHz
  • 512 MB RAM
  • At least 50 MB available HDD space for installation of the application
  • At least 200 MB available HDD space for temporary storage of data prior to antivirus scanning
  • Microsoft Windows Server 2003
Microsoft Internet Security and Acceleration Server 2000 Standard Edition
  • CPU: Intel Pentium II 300MHz
  • 256 MB RAM
  • At least 200 MB available HDD space for temporary storage of data prior to antivirus scanning
  • Microsoft Windows Server 2000 with Service Pack 4 or higher; Microsoft Windows 2000 Advanced Server with Service Pack 4 or higher; Microsoft Windows Server 2003
  • Microsoft Internet Security and Acceleration Server 2000 Standard Edition with Service Pack 1; Microsoft Internet Security and Acceleration Server 2000 Standard Edition with Service Pack 2
Microsoft Internet Security and Acceleration Server 2000 Enterprise Edition
  • CPU: Intel Pentium II 300MHz
  • 256 MB RAM
  • At least 200 MB available HDD space for temporary storage of data prior to antivirus scanning
  • Microsoft Windows Server 2000 with Service Pack 4 or higher; Microsoft Windows 2000 Advanced Server with Service Pack 4 or higher; Microsoft Windows Server 2003
  • Microsoft Internet Security and Acceleration Server 2000 Standard Edition with Service Pack 1; Microsoft Internet Security and Acceleration Server 2000 Standard Edition with Service Pack 2

Kaspersky Anti-Virus for Proxy Server

Hardware requirements Software requirements

Minimum configuration (10 or more users, about 20 requests per minute with 15 KB average request size)

  • Intel Pentium class processor
  • At least 64 MB RAM
  • At least 200 MB available HDD space for temporary file storage and at least 50 MB available HDD space for installation

Recommended configuration:

  • 50 or more users, traffic 256 MB per day, average load 20 requests per minute, maximum load 900 requests per minute, RAM used by the application at peak loads: 64 MB:
    • Pentium II 300 processor
    • At least 128 MB RAM
    • At least 512 MB available HDD space for temporary file storage and at least 50 MB available HDD space for installation
  • 250 or more users, traffic 1 GB per day, average load 150 requests per minute, maximum load 1300 requests per minute, RAM used by the application at peak loads: 128 MB:
    • Pentium IV processor
    • At least 256 MB RAM
    • At least 1 GB available HDD space for temporary file storage and at least 50 MB available HDD space for installation

One of the following operating systems:

  • 32-bit platforms:
    • Red Hat Enterprise Linux Advanced Server 4 Update4
    • Fedora Core 6
    • SUSE Linux Enterprise Server 10
    • SUSE Linux Enterprise Desktop 10 (only for Workstation)
    • openSUSE Linux 10.2
    • Debian GNU/Linux 3.1 updated (r4)
    • Mandriva 2007
    • FreeBSD 5.5, 6.2
  • 64-bit platforms:
    • Red Hat Enterprise Linux AS/ES 4
    • Fedora Core 6
    • SUSE Linux Enterprise Server 10
    • openSUSE Linux 10.2
    • FreeBSD 6.2

One of the following proxy servers:

  • Squid (with support for ICAP protocol)
  • Blue Coat SG Appliance
  • NetApp/Blue Coat NetCache
  • Cisco ACNS Content Engine

The which utility

The Webmin package (optional) – for remote administration of the application

Perl 5.0 or higher (www.perl.org)

Kaspersky Administration Kit

Hardware requirements Software requirements
Administrative server
  • Intel Pentium III 800 MHz or faster
  • At least 128 MB RAM
  • At least 400 MB available HDD space
  • MSDE 2000 with Service Pack 3 or MS SQL Server 2000 with Service Pack 3
  • Windows 2000 with Service Pack 1 or higher; Windows XP with Service Pack 1 or higher, Windows 2003 Server; Windows NT4 with Service Pack 6a; Windows Vista
Administrative console
  • Intel Pentium processor II 400 MHz or faster
  • At least 64 MB RAM
  • At least 10 MB available HDD space.
  • Windows 2000 with Service Pack 1 or higher
  • Windows XP with Service Pack 1 or higher
  • Windows 2003 Server
  • Windows NT4 with Service Pack 6a
  • Microsoft Management Console version 1.2 or higher
  • Windows Vista
Administrative agent
  • Intel Pentium 233 MHz or higher
  • At least 32 MB RAM
  • At least 10 MB available HDD space
  • Windows 98
  • Windows ME
  • Windows 2000 with Service Pack 1 or higher
  • Windows NT4 with Service pack 6a
  • Windows XP Service Pack 1 or higher
  • Windows 2003 Server
  • Windows Vista
Supported applications
  • Kaspersky Anti-Virus for Windows Workstations
  • Kaspersky Anti-Virus for Windows Servers
  • Kaspersky Anti-Virus for Linux Workstations
  • Kaspersky Anti-Virus for Linux File Servers
  • Kaspersky Anti-Virus for Microsoft ISA Server 2000 Enterprise Edition
  • Kaspersky Security for Microsoft Exchange Server 2003
  • Kaspersky Anti-Virus for Microsoft Exchange Server 2003
  • Kaspersky Anti-Virus for Microsoft Exchange Server 2000
  • Kaspersky Anti-Virus for Novell Netware (beta)

Related products