You can configure the system to capture your organization's Internet traffic and notify Information Security of threats detected in this traffic. For this purpose, PT MultiScanner can be integrated with intrusion detection and prevention systems (IDS, IPS), proxy servers, and other tools that support ICAP. This integration allows the user to configure automatic checks of all files downloaded from external subnets.

You can also configure the system to control the most important directories of web applications and your organization's portals. To do this, you need to integrate PT MultiScanner with web application firewalls (WAF), such as Positive Technologies Application Firewall (PT AF), via ICAP. This integration allows downloaded content to be scanned by antivirus scanners and provides additional protection against external threats to web applications by means of a firewall.

To configure ICAP-based traffic checking, do the following:

1. Create and configure ICAP servers by adding a source with the "ICAP server" type to PT MultiScanner.
2. Configure an ICAP client for the external system from which online traffic is received.
   For information on how to configure an ICAP client for PT AF, see the PT AF Administrator Guide, the section on integration with Positive Technologies products.

Depending on your license, PT MultiScanner can block files that pose a threat or only check files received for checking over ICAP.