The InterScan Web Security Virtual Appliance (IWSVA) is a gateway solution providing protection for web-based threats via HTTP and FTP. The product is delivered as a CD, but installs as a purpose built virtual appliance. The self-contained virtual appliance requires a 64-bit hardware platform to support its 64-bit operating systems. There are multiple deployment options that include virtual appliance, which runs on top of hypervisor technology -- such as VMware or a dedicated software appliance -- which transforms a standard server into a high-performance secure web gateway appliance with a hardened, performance-tuned operating system.
Users have several deployment alternatives as the appliance can install in either transparent bridge mode, forward proxy mode, ICAP mode or reverse proxy mode.
The tool can also work with cache servers that support the ICAP 1.0 standard. IWSVA also supports X-Authenticated ICAP Headers that are provided by supported ICAP clients, such as NetCache (5.6.2R1) and Blue Coat (SGOS 22.214.171.124). We were also pleased with the level of granularity given to control the content filtering. Filtering options were broken into several categories and were further classified as work time or leisure time. The click-to-program user interface made it very easy to customize our configuration. We also liked the feature that let us update OS and patches on the appliance without having to drop to a shell or possess any Linux expertise.
The documentation was good and walked us through the software load without any issues. A detailed administration manual was also included, but we found we did not need to reference it.
Overall, the IWSVA was very easy to load, configure and use. The product could be a nice addition to a layered malware solution.