Configuration Parameters

Top  Previous  Next

The component uses configuration parameters which are specified in the [GateD] section of the integrated configuration file of Dr.Web for UNIX Internet Gateways.

The section contains the following parameters:

LogLevel

{logging level}

Logging level of the component.

If the parameter value is not specified, the DefaultLogLevel parameter value from the [Root] section is used.

Default value: Notice

Log

{log type}

Logging method

ExePath

{path to file}

Path to the executable file of the component.

Default value: <opt_dir>/bin/drweb-gated

For Linux, Solaris: /opt/drweb.com/bin/drweb-gated

For FreeBSD: /usr/local/libexec/drweb.com/bin/drweb-gated

RunAsUser

{UID | user name}

The parameter determines under which user name the component should be run. The user name can be specified either as the user’s number UID or as the user’s login. If the user name consists of numbers (i.e. similar to number UID), it is specified with the “name:” prefix, for example: RunAsUser = name:123456.

When a user name is not specified, the component operation terminates with an error after the startup.

Default value: drweb

IdleTimeLimit

{time interval}

Maximum time that the component can remain idle. If the specified value is exceeded, the component shuts down.

Minimum value—10s.

Default value: 30s

TemplatesDir

{path to directory}

Path to the directory that contains the templates for the HTML notifications sent upon blocking a web resource.

Default value: <var_dir>/templates/gated

For Linux, Solaris: /var/opt/drweb.com/templates/gated

For FreeBSD: /var/drweb.com/templates/gated

CaPath

{path}

Path to the directory or file with system list of trusted root certificates.

Default value: Path to the list of trusted certificates. The path depends on your GNU/Linux distribution:

For Astra Linux, Debian, Linux Mint, SUSE Linux and Ubuntu, usually it is a path /etc/ssl/certs/;

For CentOS and Fedora—a path /etc/pki/tls/certs/ca-bundle.crt.

For other distributions a path can be defined through results of execution of the command openssl version -d.

If a command is unavailable or an OS distribution could not be identified , the value /etc/ssl/certs/ is used.

Changes made to the settings of the connection scanning do not influence the scanning of connections that have already been established by the applications before making changes.

Specify more particular parameters of traffic monitoring in the settings of the auxiliary component Dr.Web Firewall for Linux.