Configuration Parameters

The component uses configuration parameters which can be found in the [GateD] section of the integrated configuration file of Dr.Web for UNIX Mail Servers.

The section contains the following parameters:

Parameter

Description

LogLevel

{logging level}

Logging level of the component.

If the parameter value is not specified, the DefaultLogLevel parameter value from the [Root] section is used.

Default value: Notice

Log

{log type}

Logging method of the component.

Default value: Auto

ExePath

{path to file}

Executable path to the component.

Default value: <opt_dir>/bin/drweb-gated.

For GNU/Linux: /opt/drweb.com/bin/drweb-gated.

For FreeBSD: /usr/local/libexec/drweb.com/bin/drweb-gated

RunAsUser

{UID | user name}

The name of the user on whose behalf the component is run. The user name can be specified either as the user’s number UID or as the user’s login. If the user name consists of numbers (i.e. similar to number UID), it is specified with the “name:” prefix, for example: RunAsUser = name:123456.

When the username is not specified, the component operation terminates with an error after the startup.

Default value: drweb

IdleTimeLimit

{time interval}

Maximum idle time for the component. When the specified period of time expires, the component shuts down.

Acceptable values: from 10 seconds (10s) to 30 days (30d) inclusive.
If the None value is set, the component will functionate eternally; the SIGTERM signal will not be sent if the components goes idle.

Default value: 30s

TemplatesDir

{path to directory}

Path to the directory that contains the templates for the HTML notifications sent upon blocking a web resource.

Default value: <var_dir>/templates/gated.

For GNU/Linux: /var/opt/drweb.com/templates/gated.

For FreeBSD: /var/drweb.com/templates/gated

CaPath

{path}

Path to the directory or file with system list of trusted root certificates.

Default value: Path to the list of trusted certificates. The path depends on your GNU/Linux distribution.

For Astra Linux, Debian, Linux Mint, SUSE Linux and Ubuntu, usually it is a path /etc/ssl/certs/.

For CentOS and Fedora—a path /etc/pki/tls/certs/ca-bundle.crt.

For other distributions a path can be defined through results of execution of the command openssl version -d.

If a command is unavailable or an OS distribution could not be identified, the value /etc/ssl/certs/ is used.

Changes made to the settings of the connection scanning do not influence the scanning of connections that have already been established by the applications before making changes.

Specify more particular parameters of traffic monitoring in the settings of the auxiliary component Dr.Web Firewall for Linux.