Support

Support for business applications

Kaspersky Security for Virtualization 5.x Agentless

Network Threat Detection

Intrusion Prevention

Enabling and disabling Network Activity Scanner for virtual machines

Kaspersky Security for Virtualization 5.x Agentless
Нет результатов
Online Help
Advice & Solutions FAQ System requirements Switch to Kaspersky Security for Virtualization 6.x Agentless Forum Contact support Recovery tools Product videos

Enabling and disabling Network Activity Scanner for virtual machines

25 March 2022

ID 71369

The suspicious network activity detection functionality is available only if you are using the application under an enterprise license.

To enable or disable Network Activity Scanner for virtual machines:

  1. Open the Administration Console of Kaspersky Security Center.
  2. In the console tree, perform one of the following actions:
    • If you want to configure the operating settings of SVMs of one KSC cluster, in the Managed devices folder of the console tree select the administration group containing the KSC cluster.
    • If you want to configure the operating settings of SVMs of all KSC clusters, select the Managed devices folder.
  3. In the workspace, select the Policies tab.
  4. Select a policy in the list of policies and double-click the policy to open the Properties: <Policy name> window.
  5. In the policy properties window, select the Intrusion Prevention section.
  6. Do one of the following:
    • Select the Monitor virtual machine network activity check box if you want Kaspersky Security to scan the traffic of protected virtual machines to detect suspicious network activity that may be a sign of an intrusion into the protected infrastructure.

      If the check box is selected and Kaspersky Security detects suspicious network activity in the traffic of protected virtual machines, it takes the action defined in the application settings. If network protection is deployed in standard mode, by default Kaspersky Security terminates the connection between a protected virtual machine that displays suspicious network activity and other virtual machines. You can modify this action. If network protection is deployed in monitoring mode, Kaspersky Security does not perform any actions in relation to virtual machines displaying suspicious network activity.

    • Clear the Monitor virtual machine network activity check box if you do not want Kaspersky Security to scan the traffic of protected virtual machines for suspicious network activity.
  7. In the Properties: <Policy name> window, click OK.

Kaspersky Professional Services
Implementation services. Health check and security system configuration. Contact us if you need expert help.
Kaspersky Premium Support (MSA): High‑priority incident processing
Telephone and web ticket support. Fast response, monitoring and health check. Submit a request and activate the contract (MSA).
Did you find this article helpful?
What can we do better?
Thank you for your feedback! You're helping us improve.
Thank you for your feedback! You're helping us improve.