Proxy and Quarantine Server

Proxy Server settings
Settings
XPath
Set Server Name
Parameter to set the proxy server name or IP address.
xmlmodifier -s //configuration/ProxyServerSettings/ServerName/@value <value> configuration.xml
Allowed values
  • Valid IP address
Default value: None
Set Server Port
Parameter to set the proxy server port.
xmlmodifier -s //configuration/ProxyServerSettings/ServerPort/@value <value> configuration.xml
Allowed values
  • 0 to 65535
Default value: 0
Set User Name
Parameter to set proxy server user name.
xmlmodifier -s //configuration/ProxyServerSettings/UserName/@value <value> configuration.xml
Allowed values
  • Proxy server user name
Default value: None
Set Password
Parameter to set proxy server password.
xmlmodifier -k //configuration/ProxyServerSettings/Password/@value <password> <SPE installation directory> configuration.xml
Allowed values
  • Proxy server password
Default value: None
Quarantine Settings
Settings
XPath
Enable Quarantine
xmlmodifier -s //configuration/QuarantineServerSettings/@enabled <value> configuration.xml
Allowed values
  • True
  • False
Default value is false
Set Server Name
Parameter to set the Quarantine server name or IP address.
xmlmodifier -s //configuration/QuarantineServerSettings/ServerName/@value <value> configuration.xml
Allowed values
  • Valid IP address
Default value is None
Set Server Port
Parameter to set the quarantine server port.
xmlmodifier -s //configuration/QuarantineServerSettings/ServerPort/@value <value> configuration.xml
Allowed values
:
  • 0 to 65535
Default value is 0
Set the type of the quarantine store.
xmlmodifier -s //configuration/QuarantineServerSettings/QuarantineType/@value <value> configuration.xml
Allowed values
:
  • local
    Quarantine files to the Symantec Central Quarantine Server.
  • aws
    Quarantine files to the AWS S3 bucket.
    You can use AWS S3 bucket as a quarantine store if you have Symantec Protection Engine 8.2 or later (Linux) installed on EC2 instance.
    Default value is local
  • ondisk
    Quarantine files to the local drive of the computer on which SPE is running.
Specify the region and name of the S3 bucket.
This is specific to quarantine store type set as
aws
.
xmlmodifier -s //configuration/QuarantineServerSettings/CloudStore/@location <S3 bucket region and name> configuration.xml
Allowed values
:
  • Valid S3 bucket name
Default value is empty.
For example,
./xmlmodifier -s //QuarantineServerSettings/CloudStore/@location "Region=us-west-1::Bucketname=xxx" configuration.xml
Specify the folder path in the S3 bucket where you want to store the quarantine files.
If the path is not specified, the files are stored at the root level.
This is specific to quarantine store type set as
aws
.
xmlmodifier -s //configuration/QuarantineServerSettings/CloudStore/@relativepath <S3 bucket relative path> configuration.xml
Allowed value
:
  • Valid folder name of the S3 bucket
Specify the folder path on local drive where you want the quarantine items to be stored.
xmlmodifier -s //configuration/QuarantineServerSettings/CloudStore/@relativepath <local drive path> configuration.xml
This is specific to quarantine store type set as
ondisk
.
xmlmodifier -s //configuration/QuarantineServerSettings/CloudStore/@relativepath <local drive path> configuration.xml
Allowed value
:
  • Valid folder name with path on local drive. For example, c:\Quarantine_Store. Make sure that the folder path have valid access rights for SPE process to write files at this location.
You can configure purging of quarantined data stored on the disks using the settings given in Purging the quarantine store data.
You can configure to purge the data quarantined in the local disk of the computer using the options given here:
Purging the Quarantine Store data
Enable Purge settings
Enable the option to purge the quarantined data of the store.
xmlmodifier -s //configuration/QuarantineServerSettings/PurgeSettings/@enabled <value> configuration.xml
.
Allowed Values
:
  • True
  • False
Default Value is false.
Purge interval
Configure the interval to purge the quarantined data.
xmlmodifier -s //configuration/QuarantineServerSettings/PurgeSettings/@interval <value> configuration.xml
Allowed value
:
  • 1 to 86400 (seconds)
Default is 28800 (Three times in 24 hours).
Enable Purge logging
Configure logging of quarantined data that you purged.
xmlmodifier -s //configuration/QuarantineServerSettings/ PurgeSettings/@enablepurgelog<value> configuration.xml
Allowed values
:
  • True  - This creates a log file called QuarantineStorePurgeActitvity.log in the  configured SPE log folder.
  • False - No purge activity logs are collected.
Default value is False.
Enable FileAge based Purge Criteria
Configure the criteria to apply to purge quarantined data based on the file age.
xmlmodifier -s //configuration/QuarantineServerSettings/PurgeSettings/PurgeCriteria/FileAgeBased/@enabled <value> configuration.xml
Allowed Values
:
  • True
  • False
Default value is True. It specifies the criteria to use for the purging activity.
FileAge based Purge Criteria value
Configure the file age of the quarantined data to purge.
xmlmodifier -s //configuration/QuarantineServerSettings/PurgeSettings/PurgeCriteria/FileAgeBased/@value<value> configuration.xml
Allowed values
:
  • 1 to 8760 (hours) - Files older than this value are purged.
Default value is 240 (10 days).
If there are many quarantined items in the store, then to evaluate every quarantined items as per the purge criteria and purge them can slow down your computer. So, make sure that the purge activity is scheduled on non-working hours or when there is less load on the SPE computer. Also, set the file age criteria to a certain limit as per the environment, such that quarantined items are not piled up for longer duration in the quarantine store.