I would never venture to assume that any approach is 100% effective. But all the 99% solutions together approach 100% effectiveness (note, I say approach)
I do appreciate your work very much, and I look forward to the great benefits that your hard work will provide. ----- Original Message ----- From: "Rajkumar S" <[EMAIL PROTECTED]> To: <[email protected]> Sent: Tuesday, June 06, 2006 11:04 PM Subject: Re: [pfSense-discussion] packet A/V? > DarkFoon wrote: > > Is there anybody working on a package that does anti-vir scanning on > > incoming internet packets? > > Well, I am trying to get it done. My approach is to get snort and snortsam working with pf > first. Snortsam is a package that can add rules dynamically to variety of firewalls, > including pf, based on alerts from snort. Right now there is a bug in pf2 plugin for > snortsam that is stopping the show, I am trying to get it fixed. Next step would be to get > the clamav plugin for snort working. All these 3 working together will scan all packets > for virus and will terminate any connection that has virus. > > But one thing you have to keep in mind is that such approaches are never going to be 100% > perfect. > > raj > > > -- > No virus found in this incoming message. > Checked by AVG Free Edition. > Version: 7.1.394 / Virus Database: 268.8.2/357 - Release Date: 6/6/2006 > >
