My Symantec Corporate Edition does the same thing, but I would never-ever say it totally stops them. We had one run through our e-mail a couple of days ago, brand-new virus. It took them about five hours to recognize it and update their definitions (we update hourly), and then it was detected and quarantined. During that time, it could have infected several of our workstations. While five hours isn't unreasonable for a reaction time, it still isn't good enough to protect completely. Any company that says they can keep you "totally" virus-free is smoking something really good, run from them as fast as you can! -----Original Message----- From: Steve Moffat [mailto:steve@xxxxxxxxxx] Sent: Friday, November 04, 2005 10:14 AM To: [ISAserver.org Discussion List] Subject: [isalist] RE: Question http://www.ISAserver.org LOL......... CA...Complete @$$holes -----Original Message----- From: Alexandre Gauthier [mailto:gauthiera@xxxxxxxxxxxxxxxxx] Sent: Friday, November 04, 2005 10:52 AM To: ISA Mailing List Subject: [isalist] RE: Question http://www.ISAserver.org >They claim to be able to keep client machines on the network virus free? >I really didn't think you could do this with a firewall. (call me dumb) Well you know, CA eTrust has a centrally managed anti-virus solution that can be deployed over RPC transparently and it does just that -- it *claim* to eradicate viruses.