Sign In with your
Trend Micro Account
Need Help?
Need More Help?

Create a technical support case if you need further support.

Excluding a UNC path from scanning in Deep Security

    • Updated:
    • 11 Sep 2015
    • Product/Version:
    • Deep Security 9.0
    • Deep Security 9.5
    • Deep Security 9.6
    • Deep Security as a Service 2.0
    • Platform:
    • CentOS 6 64-bit
    • Linux - Red Hat RHEL 5 32-bit
    • Linux - Red Hat RHEL 5 64-bit
    • Linux - Red Hat RHEL 6 32-bit
    • Linux - Red Hat RHEL 6 64-bit
    • Linux - SuSE 10
    • Linux - SuSE 10 64-bit
    • Linux - SuSE 11
    • Linux - SuSE 11 64-bit
    • Ubuntu 10.04 64-bit
    • Ubuntu 12.04 64-bit
    • Windows 2003 Enterprise
    • Windows 2003 Enterprise 64-bit
    • Windows 2003 Server R2
    • Windows 2008 Enterprise
    • Windows 2008 Server R2
    • Windows 2008 Server R2 with Hyper-V(TM)
    • Windows 7 32-bit
    • Windows 7 64-bit
    • Windows 8 32-bit
    • Windows 8 64-bit
    • Windows Vista 32-bit
    • Windows Vista 64-bit
    • Windows XP Professional
    • Windows XP Professional 64-bit
Summary
You can exclude a UNC path from scanning even if “ \\ “ is not a valid entry for network share or UNC path in Deep Security 9.0, and not a supported format on the Directory List Properties page of the Deep Security Manager (DSM).
Note: If you have upgraded from Deep Security 8.0 to version 9.0, the existing directory list entries are preserved and will remain in effect, including those with “\\” and “\\ip\”. However, once you are on version 9.0, you may no longer be able to modify or create a new directory list with “\\” and “\\ip”.
Details
Public
To exclude a UNC path from scanning:
A. Create an Environment Variable for the UNC path.
  1. On the DSM console, click the Policies tab and then go to the specific policy (example: Windows Antimalware Protection) or the Base policy.
  2. Click Settings in the left panel and then go to the Computer tab.
  3. Under Environment Variable Overrides, click View Environment Variables
    create new environment variable
  4. Click New.
  5. Provide a variable name and then enter "\\" as the value for all UNC paths, or "\\10.X.X.X\” for a specific UNC path.
    Example 1: To exclude all UNC paths:
    Name: all_uncpath
    Value: \\
    Example 2: To exclude a specific UNC path only:
    Name: unc_path1
    Value: \\10.x.x.x\
    Note: The excluded paths are case-sensitive.
    environment variable name and value
  6. Click OK.
B. Add the Environment Variable to the Directory Exclusion list.
  1. On the DSM console, click the Policies tab and then go to the specific policy (example: Windows Antimalware Protection) or Base policy.
  2. Click Anti-Malware in the left column.
  3. Click the General tab and then click Edit in the Real-Time Scan Settings section.
  4. Go to the Exclusions tab.
  5. Select Directory List and then click New or Edit Directory List.
  6. Under General tab, provide a name for this directory exclusion list.
  7. In the Directory field, enter the variable you created. For example, “${all_uncpath}” or “${unc_path1}”.
    directory exclusion
  8. Click OK.
The specified UNC path/s will now be exempt from scanning.
Premium
Internal
Rating:
Category:
Configure; Troubleshoot
Solution Id:
1096634
Feedback
Did this article help you?

Thank you for your feedback!

To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.

If you need additional help, you may try to contact the support team. Contact Support


To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.


Need More Help?

Create a technical support case if you need further support.