Hi everyone, I have question about antivirus on firewall like fortigate.
Have you ever implemented antivirus on pfsense using other choice besides use clamav ?
If I had to guess I would so no. Pfsense is an appliance and while you could try to install a 3rd party AV, it’s probably not a good idea. If it isn’t developed specifically for pfsense then don’t use it.
What most people do is set up an agent based deployment on the devices they are trying to protect. Like bitdefender uses deep packet inspection. Most of the time it is way better to do this type of security at the device level and not the firewall level.
AV on a firewall is not really useful unless you have certificates installed on the endpoints allowing the firewall full visibility into the traffic and even then AV is generally signature based which is not really useful. This would also require a really fast firewall to examine the data.