On Tue, 2005-01-04 at 20:26, Jay Lee wrote: > Right now, our organization's firewall blocks all outgoing > connections to port 25 except directly from the mail server. Our > mail server supports authenticated relaying and SMTP-SSL on port 465 > so this is not a problem in 99.9% of the cases. The majority of port > 25 outgoing traffic not coming from our mailserver then is an > occassional laptop infected with a virus. Blocking port 25 prevents > the virus from spreading. However, it also means the occassional > visitor is not able to connect back to their ISP's SMTP server if the > ISP doesn't support something like SMTP-SSL (465) or port 587 sending > (which every ISP worth a hoot should do IMHO). > > What I'd like to do is configure a transparent SMTP proxy on port 25 > of the firewall that send the outgoing message through ClamAV, > allowing only clean messages to pass. User's wouldn't notice > anything when they send out messages via port 25 but viruses would > not get out (and admin notification of the offending IP wouldn't be > hard either). Is anyone aware of a SMTP proxy that is capable of > this? I believe the transparent proxy part would be configurable > with Linux and IPTables. Any suggestions? > > Jay
why not let the firewall redirect everything on port 25 && ! from the mailserver to the mailserver? tinus _______________________________________________ http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
