Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?





Hierarchy Level

Release Information

Statement introduced in Junos OS Release 18.3R1.

Support for configuration in tenant systems introduced in Junos OS Release 19.2R1.


Configures the UTM Sophos Antivirus feature for logical systems. You can also configure the default UTM configuration for antivirus feature profile. If you do not configure any option in the antivirus feature profile, the values configured in the default UTM configuration are applied.


A license check for the antivirus configuration is performed at the time of a commit and will provide a warning if a valid license is not installed on the device. Once a valid license is installed on the device then a custom antivirus profile or the antivirus default profile is able to process traffic. If a license is expired or is not installed, the antivirus service does not process the traffic.


anti-virusConfigures the UTM antivirus feature for logical systems.
mime-whitelistThis is the comprehensive list for those MIME types that can bypass antivirus scanning.
sophos-engineThe antivirus engine that is used on the device. You can only have one engine type running and you must restart the device if you change engines.
fallback-optionsFallback options helps the system how to handle the errors.
notification-optionsThere are multiple notification options you can configure to trigger when a virus is detected.
fallback-non-blockNotifications for fallback nonblocking actions.
virus-detectionNotifications to send when a virus is detected.
scan-optionsAntivirus sophos-engine scan options.
trickling HTTP trickling is a mechanism used to prevent the HTTP client or server from timing-out during a file transfer or during antivirus scanning.
url-whitelistAntivirus URL allowlist is a unique custom list that includes the URLs or IP addresses category to bypass the antivirus scanning.

The remaining statements are explained separately. See CLI Explorer.

Required Privilege Level

security—To view this statement in the configuration.

security-control—To add this statement to the configuration.