Is there a way to filter mail (for viruses / content / attachments) on a masquerading firewall without a server on the gateway? I currently have SuSE 7.0 running here, providing NAT for a few clients on the LAN; SuSEfirewall 4.2 protects the gateway. In order to protect some clients, I would like check the emails that are flowing in and filter or modify the content in case some criteria are matched (".EXE file attached? Kill. Now." etc). ZoneAlarm (http://www.zonealarm.com/) on Windows has functionality for clients that does this to some extent (rename .VBS scripts). At the same time, I would like to allow connections to any standard mail server out there (freemailers, for instance). I am under the impression that having a port redirector on the firewall which looks at the POP3 traffic might be effective? Is there such a thing at all? I looked around and only found setups where a (gateway) "local" mail server was around that did all the processing, with clients connecting to the *local* gateway. TIA, Stefan
Quoting Stefan Hoffmeister (suse.mailinglist@Econos.de) on Mon, Jan 01, 2001 at 12:08:36AM +0100:
Is there a way to filter mail (for viruses / content / attachments) on a masquerading firewall without a server on the gateway?
Whithout a server? You don't need to implement a mail server on the gateway, but a mail relay is the same code. Use on of the later postfix releases to do content filtering on mime tags via regular expressions. And use amavis on the rela mail server for additional scheck on attachments. cheers afx -- atsec information security GmbH Phone: +49-89-44249830 Steinstrasse 68 Fax: +49-89-44249831 D-81667 Muenchen, Germany WWW: www.atsec.com May the Source be with you!
participants (2)
-
Andreas Siegert -
Stefan Hoffmeister