In this section, SVM refers to an SVM with the Network Threat Protection component installed.
An SVM with the File Threat Protection component installed protects virtual machines on the VMware ESXi hypervisor. The settings that SVMs apply for virtual machine network threat protection are defined by using policies. Kaspersky Security starts protecting virtual machines only after you have configured network threat protection settings in the active policy.
Kaspersky Security protects only virtual machines that meet all the conditions for virtual machine protection against network threats.
The Network Threat Protection component of Kaspersky Security performs the following functions:
Kaspersky Security can scan traffic from IP addresses in IPv4 and IPv6 format.
The Network Threat Protection component settings depend on the traffic processing mode selected during registration of the network protection service:
You can select the traffic processing mode only when registering the network protection service (Kaspersky Network Protection).
You can configure exclusions from Network Threat Protection as follows:
Information about events that occur during protection of virtual machines against network threats is transmitted to the Kaspersky Security Center Administration Server and logged in a report.
Descriptions of currently known types of network attacks, signs of intrusions, and the databases of malicious and phishing web addresses are included in the application databases and are updated during application database updates.