Policy Enforcement > Add Policy (Step 4: Specify Network Virus Policy)
A brief description of the options on this screen is available below.
Enable Network Virus Scan—select this option to scan packets from endpoints for network viruses and other threats.
Action—select whether to monitor the endpoint as a noncompliant endpoint, drop the packet, or quarantine the endpoint. If you select to monitor the endpoint and do not select to log policy events related to this service, there will be no record of the detection.
Remedy—you can select to do nothing or to deploy Damage Cleanup Services to the endpoint. The service will attempt to clean any malware remnants on the endpoint based on the detection name.
Send policy violation data to syslog—select this option to send a log entry to syslog whenever one of the assessment criteria returns a match.
Notify endpoints about policy violations—select this option to display popup notifications on endpoints that violate this section of the policy.