The drwcsd-proxy.conf configuration file of Dr.Web Proxy Server is in the XML format and located in the following folder:
•Windows OS: C:\ProgramData\Doctor Web\drwcs\etc
•Linux OS: /var/opt/drwcs/etc
•FreeBSD OS: /var/drwcs/etc
Description of Dr.Web Proxy Server configuration file parameters:
•<listen spec="">
The <drwcsd-proxy /> root element contains one or several mandatory <listen /> elements that define the basic settings of Dr.Web Proxy Server for receiving connections.
The <listen /> element contains one mandatory attribute spec, the attributes of which define an interface to "listen" on for incoming client connections, and whether the discovery mode is enabled on that interface.
The spec element attributes:
Attribute |
Mandatory |
Allowed values |
Description |
Default |
|---|---|---|---|---|
ip | unix |
yes |
— |
Protocol type for receiving incoming connections. The address that Dr.Web Proxy server listens on is specified as a parameter. |
0.0.0.0 | - |
port |
no |
— |
Port on which Dr.Web Proxy Server listens. |
2193 |
discovery |
no |
yes, no |
Dr.Web Proxy Server discovery mode. Allows discovery of an available Dr.Web Proxy Server during multicast requests. |
yes |
multicast |
no |
yes, no |
Network "listening" mode for receiving multicast requests by Dr.Web Proxy Server. |
yes |
multicast-group |
no |
— |
Multicast group where Dr.Web Proxy Server is located. |
231.0.0.1 [ff18::231.0.0.1] |
Depending on the protocol, the list of non-mandatory properties in the spec attribute may vary.
The list of non-mandatory properties, which can be set (+) or cannot be set (-) in the spec attribute, depending on the protocol:
Protocol |
Attribute availability |
|||
|---|---|---|---|---|
port |
discovery |
multicast |
multicast-group |
|
ip |
+ |
+ |
+ |
+ |
unix |
+ |
- |
- |
- |
|
The discovery mode must be enabled explicitly even if the multicast mode is already enabled.
The forwarding algorithm if a list of Dr.Web Servers is available is given in the Administrator Manual. |
▫<compression mode="" level="">
The <compression /> element is nested in the <listen /> element, it defines compression parameters for the connection between a client and Dr.Web Proxy Server.
Attribute description:
Attribute |
Allowed values |
Description |
Default |
|---|---|---|---|
mode |
yes |
Compression enabled. |
possible |
no |
Compression disabled. |
||
possible |
Compression possible. |
||
level |
integer from 1 to 9 |
Compression level. Only for the connection between a client and Dr.Web Proxy Server. |
8 |
▫<encryption mode="">
The <encryption /> element is nested in the <listen /> element, it defines encryption parameters for the connection between a client and Dr.Web Proxy Server.
Attribute description:
Attribute |
Allowed values |
Description |
Default |
|---|---|---|---|
mode |
yes |
Encryption enabled. |
possible |
no |
Encryption disabled. |
||
possible |
Encryption possible. |
▫<forward to="" master="">
Specifies the settings for the redirection of incoming connections to Dr.Web Server. The <forward /> element is mandatory. Several <forward /> elements with different attribute values can be specified.
Attribute description:
Attribute |
Allowed values |
Description |
Mandatory |
|---|---|---|---|
to |
An address is specified according to the The Specification of Network Addresses: •<protocol>://<interface>:<port-number>—use IPv4 and IPv6. •<protocol>://(<interface>):<port-number>—use only IPv4. •<protocol>://[<interface>]:<port-number>—use only IPv6. |
Address of Dr.Web Server to which the connection is redirected. |
yes |
master |
•yes—Dr.Web Server can be used to manage Dr.Web Proxy Server in all scenarios. •no—Dr.Web Server cannot used to manage Dr.Web Proxy under any conditions. •possible—Dr.Web Server can be used to manage Dr.Web Proxy Server only if there are no other Dr.Web Servers that have an explicit management role (with their master attribute set to yes). |
The attribute defines if Dr.Web Proxy Server settings can be remotely edited via the Control Center of Dr.Web Server specified in the to attribute. You can assign managing roles to any number of Dr.Web Servers (set master="yes"); Dr.Web Proxy Server connects to all managing Dr.Web Servers in their order in the settings until it gets the first valid (not empty) configuration. You can also choose not to assign the managing role to any Dr.Web Server (set the master="no"). In this case, Dr.Web Proxy Server parameters (including the assignment of managing Dr.Web Servers) can be configured only locally in Dr.Web Proxy Server configuration file. |
no |
|
If the master attribute is not specified for Dr.Web Server, it is assumed by default that master="possible". The master attribute is not defined for any Dr.Web Server in the configuration file created by the installer during Dr.Web Proxy Server installation. |
▪<compression mode="" level="">
If the <compression /> element is nested in the <forward /> element, it defines compression parameters for the connection between Dr.Web Server and Dr.Web Proxy Server. The attributes are the same as described above.
▪<encryption mode="">
If the <encryption /> element is nested in the <forward /> element, it defines encryption parameters for the connection between Dr.Web Server and Dr.Web Proxy Server. The attributes are the same as described above.
▫<update-bandwidth value="" queue-size="">
The <update-bandwidth /> element specifies the bandwidth limit for the delivery of updates from Dr.Web Server to clients and the number of clients that can download updates at the same time.
Attribute description:
Attribute |
Allowed values |
Description |
Default |
|---|---|---|---|
value |
•bandwidth in KB/sec, •unlimited |
Maximum total bandwidth for update delivery. |
unlimited |
queue-size |
•positive integer, •unlimited |
Maximum number of simultaneous update delivery sessions allowed on Dr.Web Server. When the limit is reached, update requests from Dr.Web Agents are placed in the waiting queue. The waiting queue size is unlimited. |
unlimited |
▪<bandwidth value="" time-map="" />
The <update-bandwidth /> element may have one or several nested <bandwidth /> elements. This element specifies a bandwidth limit for data transfer for the specified time period.
Attributes description:
Attribute |
Allowed values |
Description |
Default |
|---|---|---|---|
value |
•bandwidth in KB/sec, •unlimited |
Maximum total bandwidth for transferring Dr.Web Agent updates. |
unlimited |
time-map |
— |
Mask that specifies the time period when the limitations are applied. |
— |
|
The time-map attribute value is set automatically once the corresponding setting is configured in the Control Center web interface (see Administrator Manual, p. Remote Configuration of Dr.Web Proxy Server). You cannot specify the time-map attribute manually in the configuration file. |
▫<install-bandwidth value="" queue-size="">
The <install-bandwidth> element specifies the bandwidth limit for data transfer when installing Dr.Web Agents and the number of clients that can download the installation data at the same time.
Attribute description:
Attribute |
Allowed values |
Description |
Default |
|---|---|---|---|
value |
•bandwidth in KB/sec, •unlimited |
Maximum total bandwidth for transferring Dr.Web Agent installation data. |
unlimited |
queue-size |
•positive integer, •unlimited |
Maximum allowable number of simultaneous Dr.Web Agent installation sessions allowed on Dr.Web Server. When the limit is reached, requests from Dr.Web Agent are placed in the waiting queue. The waiting queue size is unlimited. |
unlimited |
▪<bandwidth value="" time-map="">
The <install-bandwidth> element may have one or several nested <bandwidth /> elements. This element specifies the bandwidth limit for data transfer for the specified time period.
Attribute description:
Attribute |
Allowed values |
Description |
Default |
|---|---|---|---|
value |
•bandwidth in KB/sec, •unlimited |
Maximum total bandwidth for transferring Dr.Web Agent installation data. |
unlimited |
time-map |
— |
Mask that specifies the time period when the limitations are applied. |
— |
|
The time-map attribute value is set automatically once the corresponding setting is configured in the Control Center web interface (see Administrator Manual, p. Remote Configuration of Dr.Web Proxy Server). You cannot specify the time-map attribute manually in the configuration file. |
•<cache enabled="">
Configure the settings of Dr.Web Proxy Server repository cache.
Attribute description:
Attribute |
Allowed values |
Description |
Default |
|---|---|---|---|
enabled |
yes | no |
Enables/disables caching. |
yes |
The <cache> element contains the following nested elements:
Element |
Allowed values |
Description |
Default |
|---|---|---|---|
<maximum-revision-queue size=""> |
positive integer |
Number of stored revisions. |
3 |
<clean-interval value=""> |
positive integer |
Time period to keep old revisions in minutes. |
60 |
<unload-interval value=""> |
positive integer |
Time period to keep files in memory in minutes. |
10 |
<repo-check mode=""> |
idle | sync |
Check cache integrity either at startup (may take a long time) or in the background. |
idle |
▫<synchronize enabled="" schedule="">
Settings for synchronization of Dr.Web Proxy Server and Dr.Web Server repositories.
Attribute description:
Attribute |
Allowed values |
Description |
Default |
|---|---|---|---|
enabled |
yes | no |
Enables/disables repository synchronization. |
yes |
schedule |
— |
Schedule for synchronization of the specified products. |
— |
|
The schedule attribute value is set automatically once the corresponding setting is configured in the Control Center web interface (see Administrator Manual, p. Remote Configuration of Dr.Web Proxy Server). You cannot specify the schedule attribute manually in the configuration file. |
The <product name="" /> nested elements contain products for the synchronization:
•05-drwmeta—Dr.Web Server security data,
•10-drwbases—virus databases,
•10-drwgatedb—SpIDer Gate databases,
•10-drwspamdb—Anti-spam databases,
•10-drwupgrade—Dr.Web Updater,
•15-drwhashdb—known hashes of threats,
•20-drwagent—Dr.Web Agent for Windows,
•20-drwandroid11—virus databases for Android,
•20-drwcs—Dr.Web Server,
•20-drwunix—content filter databases for UNIX,
•25-drwcsdoc—documentation,
•40-drwproxy—Dr.Web Proxy Server,
•70-drwextra—Dr.Web enterprise products,
•70-drwutils—Dr.Web administrative utilities,
•80-drwnews—Doctor Web News.
•<events enabled="" schedule="">
Settings for caching events received from Dr.Web Agents.
Attribute description:
Attribute |
Allowed values |
Description |
Default |
|---|---|---|---|
enabled |
yes | no |
Enables/disables caching. If enabled, the events are sent to Dr.Web Server according to schedule. If caching is disabled, events will be sent to Dr.Web Server immediately after they are received by Dr.Web Proxy Server. |
yes |
schedule |
— |
Schedule according to which events from Dr.Web Agents will be transmitted. |
— |
|
The schedule attribute value is set automatically once the corresponding setting is configured in the Control Center web interface (see Administrator Manual, p. Remote Configuration of Dr.Web Proxy Server). You cannot specify the schedule attribute manually in the configuration file. |
•<update enabled="" schedule="">
Dr.Web Proxy Server automatic update settings.
For the automatic update, if the synchronization is enabled, Dr.Web Proxy Server updates are downloaded from Dr.Web Server according to the synchronization schedule (see above) and are installed according to the update schedule (by default, with no time limitations). If the synchronization is disabled, then updates are downloaded and installed according to the update schedule (by default, with no time limitations).
Attributes description:
Attribute |
Allowed values |
Description |
Default |
|---|---|---|---|
enabled |
yes | no |
Enables/disables automatic updates. |
yes |
schedule |
— |
Schedule for downloading and installing updates (if synchronisation is not set). |
— |
|
The schedule attribute value is set automatically once the corresponding setting is configured in the Control Center web interface (see Administrator Manual, p. Remote Configuration of Dr.Web Proxy Server). You cannot specify the schedule attribute manually in the configuration file. By default, the automatic update is allowed with no time limitations. |
•<core-dump enabled="" maximum="">
The collection mode and number of memory dumps when an SEH exception occurs.
|
Memory dump configuration is available for OS Windows only.
To collect a memory dump, the OS must contain the dbghelp.dll library. |
The dump is written to the following folder: %APPDATA%\Doctor Web\drwcsd-proxy\dump\
Attribute description:
Attribute |
Allowed values |
Description |
Default |
|---|---|---|---|
enabled |
yes | no |
Enables/disables collection of memory dumps. |
yes |
maximum |
positive integer |
Maximum number of memory dumps. The oldest are deleted. |
10 |
•<dns>
DNS settings.
<timeout value="">
Time-out in seconds for resolving DNS direct/reverse queries. Leave the value blank to disable restriction on wait time until the end of the resolution
<retry value="">
Maximum number of DNS retries when DNS query resolution fails.
<cache enabled="" negative-ttl="" positive-ttl="">
Time for storing responses from DNS server in the cache.
Attribute description:
Attribute |
Allowed values |
Description |
|---|---|---|
enabled |
•yes—store responses in the cache, •no—do not store responses in the cache. |
Enables/disables caching of responses. |
negative-ttl |
— |
Cache Time To Live (TTL) for negative responses from the DNS server in minutes. |
positive-ttl |
— |
Cache Time To Live (TTL) for positive responses from the DNS server in minutes. |
<servers>
List of DNS servers, that replaces the default system list. Contains one or several <server address=""> nested elements, whose address parameter defines IP address of the server.
<domains>
List of private TLD suffixes, that replaces the default system list. Contains one or several <domain name=""> nested elements, whose name parameter defines the domain name.