Hello,
How can I make my MT stop viruses from coming into my network? There are some hardware that do this but are very expensive. Can MT do this? Check and stop viruses?

thanks

Hi, i created these 2 simple rules for firewall forward and this work very fine...... do not say it to anybody

2 ;;; BLOCK SPAMMERS OR INFECTED USERS
chain=forward protocol=tcp dst-port=25 src-address-list=spammer
action=drop

3 ;;; Detect and add-list SMTP virus or spammers
chain=forward protocol=tcp dst-port=25 connection-limit=30,32 limit=50,5 src-address-list=!spammer action=add-src-to-address-list
address-list=spammer address-list-timeout=1d

When detect an infected user with a worm or doing spamming this rule add this user to a spammer list and block the STMP outgoing for 1 day

Regards!
Alessio

you can drop common ports, that are used bu viruses.
you have to chekc new connections only.

and you can never be sure - if one of your customers is infected?

only thing that can be done - educate your users.

Do you get "innocent" users to your black list? I know some of my users and I know their computers are clean of viruses, but some of the still get on the black list sometimes. Is it just a aggresive mail clients or what? Is it maybe possible to tweak these parameters better? I mean number of connections and packets per socond.

this rule work very well?