In the application web interface window, select the Settings → General → Protection section.
Select the Anti-Virus tab.
Enable or disable the Anti-Virus module using the Use Anti-Virus toggle switch.
The Anti-Virus module is enabled by default.
If at the previous step you enabled the Anti-Virus module, configure the following anti-virus scan settings:
If you want to use technology for detecting threats that the program cannot detect using Anti-Virus databases, use the Use heuristic analysis toggle switch to enable heuristic analysis.
By default, heuristic analysis is enabled.
If you have enabled heuristic analysis, in the Heuristic analysis level drop-down list, select one of the following levels:
Light.
Medium.
Deep.
By default, the Medium level is selected.
In the Maximum scanning time (s) field, specify the maximum duration of Anti-Virus scanning of a message in seconds.
Possible values: integers from 1 to 600. Default value: 180.
If the virus scan of a message does not finish within the time limit you specified, Kaspersky Secure Mail Gateway:
Interrupts the message scan.
Performs your configured action on the message.
Assigns the Error status to the message.
Adds a record to the /var/log/ksmg-messages event log.
In the Maximum scanned level of archives field, specify the maximum nesting level of messages scanned by the Anti-Virus module.
Possible values: integers from 1 to 20000. Default value: 32.
If necessary, configure exclusions from Anti-Virus scanning. To do so, in the Scan exclusions group of settings, enable or disable Anti-Virus scanning of legitimate programs, which can harm the corporate LAN if exploited by hackers, using the Some legitimate applications toggle switch.
Such legitimate programs, which if exploited by hackers can harm the corporate LAN if exploited by hackers, include, for example, commercial remote administration utilities, IRC clients, dialers, file downloaders, computer system activity monitors, and password management utilities.
By default, messages containing legitimate programs are excluded from scanning. If this setting is disabled, the action specified in rules for infected objects is applied to such messages.