Andrew P. Kaplan wrote: .
Can you give me a hint as to how you do this. I like the idea of having multiple redundant spamclam boxes.
We run a similar setup to Paul's.
We have a pair of incoming SMTP servers servers running Sendmail with two milters: clamav-milter and milter-ahead. Milter-ahead calls ahead to our delivery server to make certain users exist before accepting message bodies. As you might guess, this automatically reduces a lot of crap traffic, saving scanning resources. Once the body has been accepted, clamav-milter uses clamd on remote dedicated scanning boxes to detect and then reject viruses.
Once the message has been accepted, it's forwarded to the delivery server. On the delivery server, procmail passes the message to spamc, which connects to spamd running on the same scanning boxes as clamd. Spam can then be /dev/null'd, fed through TMDA, filtered into spamtraps, subject-tagged or whatever the user wants. As a safety next, if procmail doesn't find the clamav-milter signature in the email headers (i.e. the milter hiccups, the scanning boxes are down or whatever), it passes the email off to clamassassin/clamdscan for a second attempt at virus scanning with a local clamd. I wish it was remote, but clamdscan won't use STREAM to get the file to the daemon. Since the vast majority are properly scanned by the milter, though, only a handful need to be scanned on the delivery server so it doesn't really matter that much.
Essentially, the dedicated scanning boxes rely on clamav-milter and spamc being able to talk to remote scanning daemons. (I appreciate clamav-milter now being able to do scans by itself, but I won't be using that facility... :-) Since clamav-milter will automatically detect and skip downed hosts in its list of remote servers (retrying them occasionally later), and since if spamc is told to connect to a host which resolves to multiple addresses, spamc will failover if some don't respond, we can add/remove scanning boxes pretty much at will.
Craig. ------ _______________________________________________ http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
