X400 virus scanning.
Guys, I have a large org with a huge x400 connection topology. I'm going to be responsible for a particular site. I want to protect my site (single server 5.5) on the X400 connector and the SMTP connector. I've solved the SMTP with a content checking relay. I want to protect the internal mail routed via x400 too. I would like to have x400 'relayed' from another server in my DMZ. (I'm also using a Firewall to protect my LAN from other LAN's). i.e. I want the mail scanned before it gets to my Exchange server as I have a complete dislike for products like Group Shield for Exchange and Mailsweeper for Exchange etc. I believe Exchange should have perimeter security for performance and reliability issues. Any suggestions ? Ps .I have free choice of firewall. Currently, I don't know of any firewalls that can proxy x400 and use CVP. Rgds Adam Romain ** This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the system manager. Network Defence Ltd ** _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED]
RE: X400 virus scanning.
I think your theory is flawed, but that is just IMHO. While I agree you should have perimeter scanning, I think it is foolish to not have something on the server as well. If you don't have AV on the server and something gets through, how will you ever clean it? If a sender on the network sends a virus or other objectionable file, it will still be in their mailbox even if the perimeter scanner gets it. Bottom line is I believe you should have as many layers as possible. This means perimeter, server, desktop, etc. I dislike Groupshield as well. As far as I am concerned there are only 2 worth using. Trend and Antigen. Performance should not be too much of an issue and should NEVER take precedence over safety. -Original Message- From: Adam Romain [mailto:[EMAIL PROTECTED]] Sent: Thursday, February 07, 2002 5:34 AM To: Exchange Discussions Subject: X400 virus scanning. Guys, I have a large org with a huge x400 connection topology. I'm going to be responsible for a particular site. I want to protect my site (single server 5.5) on the X400 connector and the SMTP connector. I've solved the SMTP with a content checking relay. I want to protect the internal mail routed via x400 too. I would like to have x400 'relayed' from another server in my DMZ. (I'm also using a Firewall to protect my LAN from other LAN's). i.e. I want the mail scanned before it gets to my Exchange server as I have a complete dislike for products like Group Shield for Exchange and Mailsweeper for Exchange etc. I believe Exchange should have perimeter security for performance and reliability issues. Any suggestions ? Ps .I have free choice of firewall. Currently, I don't know of any firewalls that can proxy x400 and use CVP. Rgds Adam Romain ** This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the system manager. Network Defence Ltd ** _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED]
RE: X400 virus scanning.
I agree with your points. In retrospect, I'm now more convinced that having AV in the server is also very important. In fact I would only would like to rely on it as a fallback and hope that it could be stopped on the perimeter. (The desktops already have AV). More to what I want though (I should of made this bit clearer), is content checking - being able to block certain attachments, documents, vbs, exe, with AV. There are many SMTP relays out there that can do this very well, but not much for x400, at least not for small scale deployments that I know of... MailGaurd can do x400 in the enterprise edition but at aprrox £25k (4) is a bit expensive! -Original Message- From: Martin Blackstone [mailto:[EMAIL PROTECTED]] Sent: 07 February 2002 13:51 To: Exchange Discussions Subject: RE: X400 virus scanning. I think your theory is flawed, but that is just IMHO. While I agree you should have perimeter scanning, I think it is foolish to not have something on the server as well. If you don't have AV on the server and something gets through, how will you ever clean it? If a sender on the network sends a virus or other objectionable file, it will still be in their mailbox even if the perimeter scanner gets it. Bottom line is I believe you should have as many layers as possible. This means perimeter, server, desktop, etc. I dislike Groupshield as well. As far as I am concerned there are only 2 worth using. Trend and Antigen. Performance should not be too much of an issue and should NEVER take precedence over safety. -Original Message- From: Adam Romain [mailto:[EMAIL PROTECTED]] Sent: Thursday, February 07, 2002 5:34 AM To: Exchange Discussions Subject: X400 virus scanning. Guys, I have a large org with a huge x400 connection topology. I'm going to be responsible for a particular site. I want to protect my site (single server 5.5) on the X400 connector and the SMTP connector. I've solved the SMTP with a content checking relay. I want to protect the internal mail routed via x400 too. I would like to have x400 'relayed' from another server in my DMZ. (I'm also using a Firewall to protect my LAN from other LAN's). i.e. I want the mail scanned before it gets to my Exchange server as I have a complete dislike for products like Group Shield for Exchange and Mailsweeper for Exchange etc. I believe Exchange should have perimeter security for performance and reliability issues. Any suggestions ? Ps .I have free choice of firewall. Currently, I don't know of any firewalls that can proxy x400 and use CVP. Rgds Adam Romain ** This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the system manager. Network Defence Ltd ** _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] ** This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the system manager. Network Defence Ltd ** _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED]