AV scanner wont scan FTP, HTTPS, or email?



  • Is this true?



  • If you're talking about the HAVP package, it's a HTTP proxy, it scans HTTP only. Nothing can scan HTTPS short of ugly MITM on SSL that some commercial products implement (which requires installing a cert on all client systems). Gateway AV is ugly any way it's done, better handled on servers and clients, or better yet put in a proxy that only allows a few users to even download such files. AV in general is highly ineffective against typical web malware.



  • I dont want to say it…..

    but Untangle scans email, and ftp.

    Any way to get pfsense to do it?



  • @jaredadams:

    I dont want to say it…..

    but Untangle scans email, and ftp.

    Any way to get pfsense to do it?

    HAVP can scan HTTP only.



  • @jaredadams:

    I dont want to say it…..

    but Untangle scans email, and ftp.

    Any way to get pfsense to do it?

    Untangle isn't pfSense.  Many people, who can stand the terrible performance and shocking interface, use Untangle in conjunction with pfSense.



  • Look I'm completely aware that pfsense is not untangle and the point of my post was not to point out something that pfsense doesn't do compared to untangle but rather ask if there is a way to get pfsense to do something that untangle does.

    I ask this because I want to use pfsense NOT untangle. But I also would like to scan ftp and email.


  • Rebel Alliance Developer Netgate

    No. Nobody has written packages for scanning e-mail or FTP for viruses, and it isn't likely that someone will (unless someone sponsors the feature).



  • Just remember the lag that this antivirus causes is not worth using it .I used another utm software and there was zero lag and scanned everything going through it with no problems .



  • @NightHawk007:

    Just remember the lag that this antivirus causes is not worth using it .I used another utm software and there was zero lag and scanned everything going through it with no problems .

    Every gateway AV causes lag, and weirdness with downloads from the internal clients' perspective as the proxy itself downloads it first and scans it, then sends it to the client.


Log in to reply