[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Firewall related questions

To: dcarey <dcarey@yossman.com>
Subject: Re: Firewall related questions
From: Laurence Moore <lmoore@starwon.com.au>
Date: Sat, 6 Jan 2001 14:11:37 +0800 (WST)
Cc: tech@openbsd.org

On Sat, 6 Jan 2001, dcarey wrote:

> Wondering if any of you know of a few features that may be available for
> OpenBSD in a firewall config.  They are HA, URL filtering and Antivirus on
> the firewall.
> Any tips would be appreciated as I am new to the OpenBSD scene but bought
> a CD to support the cause!
> 

I'll comment only on the AntiVirus side of things.

I have installed some OpenBSD 2.7 systems and wanted e-mail scanning (URL
Scannin would be desirable) however there are no native OpenBSD ports of
AntiVirus software around. I initally looked at Trends Interscan VirusWall
for Linux but could not get the HTTP, FTP and SMTP scanners to run - They
simply crashed and burned. I had the Linux libraries from the distribution
installed but it wanted different libraries. I extraced libraries from a
RedHat 6.0 system but still no luck (later realised RH6.1 libraries dont
work with OpenBSD 2.7 - No qualification, just speculation).

In my desire to find a solution I discovered AvMailGate from
http://www.antiver.de and downloaded the then current version (6.4.0.x)
from their website and was able to get it to successfully run on OpenBSD
2.7 using the Linux Libraries from the distribution CD.

Wonderful I thought, a solution that at last works using emulation though
a native port would be nice.

I've since downloaded the latest version of AvMailGate which is version
6.5.0.0 only to be disappointed to discover that have compiled against
later library versions than is in the Linux Libraries on the OpenBSD
Distribution CD. No to be deterred, I downloaded from FreeBSD.org the
RedHat 6.1 package and installed it on my OpenBSD 2.7 sytem only to
discover that AvMailGate still wouldn't run, just like the Trend product.

Not to be defeated I pulled out my RH6.0 CD and built a minimal system -
noX-Libraries (installed on a 200MB HDD) then copied the appropriate files
onto my OpenBSD system. All is running smoothly again.

Having discovered that AvMailGate doesn't work with RH6.1 libraries but
does with RH6.0 now leads me to want to try the Trend product again (I
think I did test this once before using RH6.0 libraries - can't remeber
for sure).

So here is a starting point for you with respect to e-mail virus scanning.

One point to remeber, AvMailGate (6.4.0.x) will not run unless you have
the procfs mounted so you will need to make an entry in /etc/fstab.

Cheers,

Larry.

References:
- Firewall related questions
  - From: dcarey <dcarey@yossman.com>

Prev by Date: pr919 again, and machine drops into ddb...
Next by Date: Re: Firewall related questions
Prev by thread: Firewall related questions
Next by thread: Re: Firewall related questions
Index(es):
- Date
- Thread