Settings > Repository

Trellix virus definitions (DAT file) updates can be applied to Powertech Antivirus Endpoints from an internal DAT file repository using an HTTP or FTP file server. The file server is secured using TLS and runs in FTPS mode ensuring that data transfer is always secure.

This page allows you to configure the Virus Definition Repository settings.

How to Get There

In the Powertech Antivirus Navigation Pane, choose Settings.

Options

Virus Definition (DAT) Repository Common Settings

Off • On

The Powertech Antivirus Service will download DAT files for internal repository that can be shared. Off disables the Powertech Antivirus Service Repository. On enables it.

Use HTTPS; On • Off

When Powertech Antivirus's HTTP Proxy Server setting is on, you can toggle this setting to On to download virus definition DAT files using the secure HTTPS server offered by Trellix (https://update.nai.com/products/commonupdater). HTTPS uses Transport Layer Security (TLS) (formerly known as Secure Sockets Layer (SSL)) to encrypt the transaction.

When this setting is Off, and Use HTTP Proxy Server is on, Powertech Antivirus uses Trellix's HTTP server for DAT file downloads (http://update.nai.com/products/commonupdater).

DAT Update Frequency

This setting controls the frequency the Powertech Antivirus Service checks for DAT Updates, from 5-1440 minutes. Default is 60.

HTTP Proxy Server; On • Off

This option allows you to configure the DAT Repository Trellix download process to use a proxy server rather than directly accessing the Trellix Server. Set to On to use a proxy server and add the proxy server address (for example, https://dns_name:port; https://ip_address:port; http://dns_name:port; http://ip_address:port). Set to Off to configure Powertech Antivirus to access the Trellix server directly.

If you have configured the proxy server address and change the setting to Off, the address will be restored when turned On.

Automatically update Endpoints when DAT Updates are available; On • Off

Set this to On to check for DAT file updates automatically at the frequency indicated above. Set to Off to disable automatic DAT file updates.

Virus Definition (DAT) Repository HTTP Service Settings

Off • On

If set to On, the Powertech Antivirus Service will run an HTTP file server for the DAT File Repository. Off disables the HTTP file server.

Max Concurrent Endpoint Updates

This is the maximum concurrent DAT updates allowed within a request (10-200). Default is 32.

Port

The port used for the DAT file server.

Virus Definition (DAT) Repository FTP Service Settings

Off • On

If set to On, the Powertech Antivirus Service will run an FTP file server for the DAT File Repository. Off disables the FTP file server.

By default, Linux prevents programs from accessing ports lower than 1024. To allow our FTP server to use port 21, run the following commands:

setcap CAP_NET_BIND_SERVICE=+eip /opt/ptavwebsvc/PTAVService/ptavsvc

modprobe ip_conntrack_ftp

IMPORTANT: After running the setcap and modprobe commands you must restart the Powertech Antivirus Service.

TIP: We recommend that you register 'ip_conntrack_ftp' so that it is automatically loaded after a system boot. To do this, create a file, such as:

/etc/modules-load.d/ip_conntrack_ftp.conf

and put ip_conntrack.ftp within this file.

NOTE: It may be necessary to repeat the setcap command and restart the Powertech Antivirus Service after an upgrade of Powertech Antivirus, as the extended attributes for ptavsvc may get overwritten.

Copyright © Fortra, LLC and its group of companies.
All trademarks and registered trademarks are the property of their respective owners.
6.4 | 202505220734 | May 2025