Janek J=FCssi (11.11.2002 12:28):>Hi Everybody!
>I got a question. Is it possible to integrate virus control program to my
>firewall=3F I''d like to check all incoming traffic to detect the
>viruses/worms/trojans. I think it isn''t so easy if I just install
virus
>control program to my server. Or is it=3F
Well, once more and again:
Shorewall is a kind of "packet filter" that=20works with network and
transport
layer of the ISO - OSI Model.
http://www.thelinuxreview.com/howto/intro=5Fto=5Fnetworking/c4412.htm
SMTP protocol works with application layer of the ISO - OSI Model. And
that''s
why Shorewall cannot control and detect viruses in SMTP traffic.
If U wanna control and block viruses then use (for example) AMaViS:
http://sourceforge.net/projects/amavis
All of amavis, amavis-ng and amavisd can cooperate with many MTA (Sendmail,
postfix, exim, ...) and with many antiviruses (Sophos, NAI, ...). I prefer
amavisd.
My SMTP gateway runs shorewall + Postfix + amavisd + antivirus..
U can use amavisd (+ some Squid redirector) also for virus checking with Squid
and control all HTTP traffic going through your PROXY. That is what
I''ve got on
my PROXY server ... Shorewall + Squid + amavisd + antivirus + squid redirector
Enjoy and sorry for my poor english :o)
TimeLord