Anti virus



  • Can anyone recommend a anti virus / anti trojan that works with pfsense?  8)



  • ClamD works quite well in pfsense, its integrated in squid3 proxy.



  • @exograpix:

    ClamD works quite well in pfsense, its integrated in squid3 proxy.

    Thanks, how do I do that please?  :) Also once installed  is updating automatic or do I have to log on to web configure as admin and update within web config?



  • Basically you have to install squid3 proxy with support icap. Once you configure squid proxy go to antivirus tab and enable it, save the setting and press save again. It will throw some errors, which are self explanatory, rectify them in conf file and save again.

    Once errors are gone, you have to wait for getting it updated, which may take sometime. once update is done, icap service will be on anc active, test it with www.eicar.org.

    Enjoy



  • @exograpix:

    Basically you have to install squid3 proxy with support icap. Once you configure squid proxy go to antivirus tab and enable it, save the setting and press save again. It will throw some errors, which are self explanatory, rectify them in conf file and save again.

    Once errors are gone, you have to wait for getting it updated, which may take sometime. once update is done, icap service will be on anc active, test it with www.eicar.org.

    Enjoy

    Thanks.  8)
    How do I "rectify them in conf file "?



  • When you save the antivirus setting again, it will throw some errors on the top,

    1. basically you have to put your host/domain name in the clwarn.cgi url in the first setting.

    2. You have to put service file in written on the second error into conf settings

    3. You have to delete domain setting mentioned in the third and final line, than press save again.

    You have to wait for icap to update the clamav file, which is quite dicey , it will take long time depending on your connection.
    Once updated antivirus will start filtering.



  • @exograpix:

    When you save the antivirus setting again, it will throw some errors on the top,

    1. basically you have to put your host/domain name in the clwarn.cgi url in the first setting.

    2. You have to put service file in written on the second error into conf settings

    3. You have to delete domain setting mentioned in the third and final line, than press save again.

    You have to wait for icap to update the clamav file, which is quite dicey , it will take long time depending on your connection.
    Once updated antivirus will start filtering.

    Thanks  :)
    So if my host / domain is www.WaqarUk.com, this I put into clwarn.cgi in the first setting?
    Then, what is is my "service file" please?
    How do I do "You have to put service file in written on the second error into conf settings"?

    I have a cable 50 Mbit connection & I am running Win 7 Ultimate on a i5-2500K, Asus Sabertooth p67 B3, Crucial 480 GB SSD M550 & various mechanical (2 TB & 1TB) hard drives for data, Corsair 16 GB ddr3, Asus 550 Ti GTX & Corsair semi modular 750 Wats power suppy in a fractal design R3 USB 3.0 case.