Monitoring
Fortra strongly recommends that you monitor the Powertech Antivirus for IBM i messages logged to the AVMSGQ to ensure an ongoing problem is noticed and remedied as soon as possible.
You can monitor the AVMSGQ message queue manually, or to insure timely notification, automate the monitoring with one of Fortra's products.
As important as it is to install antivirus protection on your server, it is equally important to know when problems occur. Important events that you need to monitor are:
- When Powertech Antivirus for IBM i detected and removed a virus,
- If virus definition files could not be retrieved; and
- If the AVSVR job is ended or not running.
In addition, you could monitor other events, such as if a scan ended abnormally or did not run at all.
Manually monitoring the AVMSGQ message queue
To monitor the AVMSGQ manually, run the following command:
CHGMSGQ MSGQ(STANDGUARD/AVMSGQ) DLVRY(*BREAK) SEV(90)
Note: You will need to run this command each time you sign on, or automate the command into an initial sign-on program.
Automated monitoring of the AVMSGQ message queue
If you are using a monitor product, we recommend you monitor the AVMSGQ message queue for messages of severity 90 and higher. Add an action to page you or send emails to a list of operators or administrators.
In a multiple-system/partition environment, distribute the monitor to each system running Powertech Antivirus for IBM i.
We recommend you create an additional monitor to check for the absence of the completion message by a specific time. This will alert you to conditions where the automatic process is not starting, possibly due to a problem with the job schedule entry or job queue. In a multiple-system/partition environment, a monitor product can ensure all systems/partitions have reported the update process started and completed successfully, and notify an administrator with exceptions.
We recommend monitoring for the following messages:
| Message ID | Message Text |
|---|---|
| AVC0305 | &4 file(s)scanned in &6. &5 viruses found,&2 file(s)skipped, &3 error(s) |
| AVC1001 | &1 violations found |
| AVE0105 | Error(s)occurred running task '&1'. See messages in job &4/&3/&2 |
| AVE0106 | Task 'System virus scan task' completed with errors |
| AVE0107 | Task '&23' completed with warnings. 0 viruses found , &4 file(s)scanned OK but &6 file(s)were not scanned due to errors |
| AVE0131 | FILE …. IS INFECTED WITH |
| AVE0139 | &13 virus(es)found. &6 file(s)not scanned due to errors |
| AVE0207 | Error(s) occurred updating virus definitions. |
| AVI0601 | WARNING: Virus definitions are older than 7 days |
| AVI9903 | Powertech Anti-Virus support will end in &1 day(s) |
| AVI9904 | Powertech Anti-Virus activation ends in &1 days |
| AVI9905 | Powertech Anti-Virus E-mail scanning will end in &1 days |
| AVI9906 | Powertech Anti-Virus on-access scanning will end in &1 days |
| BYT9901 |
License invalid or expired. Press Help for more information |