Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    Howto use pfsense as mailproxy?

    pfSense Packages
    3
    6
    1155
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • R
      RichardEb last edited by

      Hello,

      we are using an external mailserver. We are using a mail client on the local desktop PCs to fetch/send mails from the external mailserver via imap/smtp(SSL/TLS encyrpted). Now I'd like to build an antivirus check for incoming mails. Is it possible to add an antivirus "relay"(?) within pfsense?

      The mails should be still managed and stored on the external mail server. But if a mail client (software) tries to load a mail message via imap an antivirus check should be performed.

      Is this possible with pfsense? Can you tell me how or at least give me some hints how to do?

      Thank you

      1 Reply Last reply Reply Quote 0
      • jahonix
        jahonix last edited by

        Shouldn't anti-virus checks be done on or in front of your external mail server?
        How do you want to check on SSL encrypted traffic without man-in-the-middle sort of hacking?

        1 Reply Last reply Reply Quote 0
        • D
          doktornotor Banned last edited by

          So postfix package is gone, so no, not at the moment. Plus what's said above, SSL cannot be checked without MITM.

          1 Reply Last reply Reply Quote 0
          • R
            RichardEb last edited by

            Pfsense is already doing mint for the https traffic. So this should be no problem.

            The external Mailserver does not perform any Antivirus checks. I also can't manage/change the external Mailserver. So I have to do the checks when the data crosses my network border.

            1 Reply Last reply Reply Quote 0
            • R
              RichardEb last edited by

              @doktornotor:

              So postfix package is gone, so no, not at the moment. Plus what's said above, SSL cannot be checked without MITM.

              Maybe I'll try it with a self installed postfix. Could you give me some buzzwords for google? Or a link to a Howto? The postfix should store no data. Only performe a MITM antivirus check

              1 Reply Last reply Reply Quote 0
              • jahonix
                jahonix last edited by

                You surely already read this thread: https://forum.pfsense.org/index.php?topic=40622.705 ?

                1 Reply Last reply Reply Quote 0
                • First post
                  Last post