[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: AV gateway

To: misc_(_at_)_openbsd_(_dot_)_org
Subject: Re: AV gateway
From: Janusz Gumkowski <januz_(_at_)_uck_(_dot_)_uni_(_dot_)_torun_(_dot_)_pl>
Date: Wed, 19 May 2004 09:26:04 +0200
Mail-followup-to: Janusz Gumkowski <januz_(_at_)_uck_(_dot_)_uni_(_dot_)_torun_(_dot_)_pl>, misc_(_at_)_openbsd_(_dot_)_org
Reply-to: Janusz Gumkowski <januz_(_at_)_uck_(_dot_)_uni_(_dot_)_torun_(_dot_)_pl>

> >Try to redirect all SMTP traffic to a local copy of ClamAV which scans
> >and sends on.  I don't yet know if this is do-able, it was just a quick
> >thought.
> 
> I know it's do-able as a defined SMTP server, I'm doing it right now.   
> I was speaking of a transparent solution on a gateway, like a 
> transparent proxy.  I was thinking of a ftp-proxy or transparent squid 
> type setup.
> 


Install a SMTP+antivirus server on that gateway, make it listen on an internal
address and then redirect all SMTP connections there.  Something like this:

rdr on $if_internal proto tcp from $net_internal to any port 25 -> $addr_internal

Note that this will not work (or at least not straight-forward) if your clients
are using SMTP AUTH.

Ja.

References:
- AV gateway
  - From: Nick Buraglio
- Re: AV gateway
  - From: Jason Dixon

Prev by Date: Re: Virus email scanner
Next by Date: Re: Virus email scanner
Previous by thread: Re: AV gateway
Next by thread: Re: AV gateway
Index(es):
- Date
- Thread

Visit your host, monkey.org