Setup Guide

If you have an existing bucketAV installation, read the Update Guide instead!

Subscribe to the product in AWS Marketplace

  1. Go to the AWS Marketplace . Click on Continue to Subscribe. Step 1
  2. Click on Accept Terms. Step 2
  3. The subscription is now Pending. Step 3
  4. Wait until the subscription is active and click on Continue to Configuration. Step 4
  5. We provide three Delivery Methods:
    • Dedicated public VPC (recommended): This is the most cost-efficient option where the network setup is included.
    • Dedicated private VPC: The EC2 instances run in private subnets. The traffic to scan files is routed through Gateway VPC Endpoints and Interface VPC Endpoints (additional traffic charges apply). Other traffic is routed via NAT Gateways (additional traffic charges apply). We recommend this option only if your internal security guidelines require it.
    • Existing VPC: Only for experienced AWS users. You can deploy bucketAV into an existing VPC. Ensure that the AWS API is accessible and update-sites for ClamAV® can be reached (see required outbound ports).

The Region you select must match with the region of your S3 buckets. If you use S3 buckets in multiple regions, repeat the setup for each region.

  1. Click on Continue to Launch. Step 5
  2. Choose the Action Launch CloudFormation and click on Launch. Step 6
  3. You are redirected to CloudFormation. bucketAV is managed and configured via CloudFormation. Click on Next. Step 7
  4. Set a Stack name (e.g., bucketav).
  5. Under Required Parameters, set the KeyName to an EC2 Key Pair .
  6. You can skip the rest of the parameters and go with the defaults (recommended). Step 8
  7. Scroll to the bottom of the page and click on Next. Step 9
  8. Scroll to the bottom of the page and click on Next. Step 10
  9. Scroll to the bottom of the page, enable I acknowledge that AWS CloudFormation might create IAM resources, and click on Create. Step 11
  10. The stack status is CREATE_IN_PROGRES. Reload the table from time to time and … Step 12
  11. … wait until the CloudFormation stack status switches to CREATE_COMPLETE. Step 13

bucketAV is now up and running. Continue to connect your S3 buckets.

Configure your S3 buckets

  1. In the AWS S3 Management Console , click on the bucket you want to connect to bucketAV. Make sure the bucket’s region matches the bucketAV region. Step 1
  2. Click on the Properties tab. Step 2
  3. Scroll down to the Event notifications box click on Create event notification. Step 3
  4. Set the Event Name (e.g., bucketav).
  5. Select the All objects create events event type.
  6. Select the destination SQS Queue and choose the SQS Queue with ScanQueue in the name.

Don’t select the queue with DealLetterQueue in the name!

  1. Click on Save changes. Step 4

That’s it. From now on, each file that gets uploaded to your S3 bucket is scanned for trojans, viruses, and malware automatically. Repeat the steps for each bucket that needs protection! Follow these steps to test your configuration:

  1. Upload a file to test the configuration.
  2. Click on the uploaded file. Step 6
  3. Scroll down to the Tags box. Within a few seconds, the bucketav tag is added with the scan result (reload the page if needed). Step 7

Continue to configure scheduled full bucket scans.

Scan buckets at regular intervals

If you want to scan all files in a bucket on a schedule, install our Scan bucket at regular intervals Add-On. Continue to configure reporting and open the dashboard.

Reporting & Visibility

To receive a daily/weekly/monthly email report, you have to install our Reporting Add-On.

Check out the CloudWatch Dashboard for full visibility into bucketAV.

Stay up-to-date

Get notified about security updates and new capabilities.