How to manage HTTP exceptions for Bitdefender Business Client

Bitdefender Client Security is an easy to use business security and management solution, which delivers superior proactive protection from viruses, spyware, rootkits, spam, phishing and other malware. It offers the following components: Bitdefender Management Server (with/without add-on), Bitdefender Local Update Server, Bitdefender Business Client and Bitdefender Management Agent

Bitdefender Business Client intercepts the HTTP traffic in order to scan it for malware and to apply the relevant Identity Control and User Control policies. The HTTP traffic that does not comply with the HTTP standard is automatically blocked, without any warning.
Note: Use caution when defining HTTP exceptions. HTTP exceptions can make the workstation more vulnerable to viruses and other malware. Add HTTP exceptions only for applications, IP and web addresses that you fully trust. It is best that you first consult your network security administrator before adding an HTTP exception.

Set HTTP Exceptions from Bitdefender Management Server

In order to correctly configure a HTTP exclusion policy, you will need to:

         1.  Open Bitdefender Management Console and login;
         2.  Go to Policies and select Create new Policy option;
         3.  From the product templates area, select "Bitdefender Business Client" category;
         4.  Choose Exclusion policy and click Next;

         a.  Adding an application to exclusions

              When an application is added as an HTTP exception, the HTTP traffic to or from that application is no longer intercepted by Bitdefender. This means that:

• the respective traffic is not scanned for viruses;
• the relevant Identity Control and User Control policies are not applied to the respective traffic;

             An example of an application that may be added as an HTTP exception: a proprietary application, which generates HTTP traffic non compliant with the HTTP standard, does not work after Bitdefender Business Client is deployed.

        Note: Do not add web browsers as HTTP exceptions, unless advised by a Bitdefender support representative! Excluding a web browser from HTTP scanning will disable virus scanning and the Identity Control and User Control policies for content sent or received via that browser;

         b.  Adding IP addresses and IP subnets to exclusions

              When an IP address is added as an HTTP exception, the HTTP traffic to or from that IP address is no longer intercepted by Bitdefender. Similarly, when an entire IP subnet is added as an HTTP exception, the HTTP traffic to or from IP addresses belonging to that subnet is no longer intercepted by Bitdefender. This means that: 

• the respective traffic is not scanned for viruses;
• the relevant Identity Control and User Control policies are not applied to the respective traffic;

Here are some situations when you may add IP addresses or subnets as HTTP exceptions:

• Identity Control rules have been configured to prevent private or confidential information from being sent from the workstation over HTTP. To allow such information to be exchanged internally over HTTP, you may add the IP addresses of the internal web servers as HTTP exceptions.
• To disable HTTP virus scanning for specific IP addresses, which are known to be safe (for example, the IP address of an intranet HTTP server).

         c.  Adding Web addresses to exclusions

              When a web address is added as an HTTP exception, the HTTP traffic to or from that web site is no longer intercepted by Bitdefender. This means that:

• the respective traffic is not scanned for viruses;
• the relevant Identity Control and User Control policies are not applied to the respective traffic;

1. 5
2. 1
3. 0
4. 1
5. 3