hello,

want to protect uploads to a webserver (Document Management Server). We want to prevent people uploading files with malicious content and also we like to filter out unwanted filetypes (or: only allow required filetypes). We are thinking about implementing this with a MS ISA server 2006 as reverse proxy to the webserver. The ISA server will publish the webserver, using SSL termination on the ISA server. In this way, the ISA server will be able to inspect the traffic. Will it be possible, in this scenario, for Kaspersky Security for Internet Gateway to scan the uploads to the webserver? If so, are there any restrictions to take into account?

Thanks in advance

For those who want to know the root of my question without any of the detail:

I want to know if Kaspersky for ISA can be configured to block infected files from being uploaded, not just downloaded.

Here's a general description of our setup and challenge:

We have a IIS 6.0 web server and also have another server running ISA 2006. The ISA 2006 server is configured as a reverse proxy. External users establish SSL connections with the ISA server. The ISA server has a filter that passes the traffic to the web server. I have installed Kaspersky Antivirus for ISA and it appears to be running correctly.

When a client connects and uploads a known infected file*, it passes untouched through ISA, but when the client tries to download the same file it is blocked. While that's great for protecting clients, my goal is to stop the file from ever being uploaded.

Is it possible to configure Kaspersky for ISA to look at uploaded files and not just downloaded ones?

* For testing purposes, I used the Eicar AV test file.

Thanks for reading and any responses. I am happy to provide more details if it would be helpful.