make pf to detect and drop virus/malware packets

[Richard Brendörfer]

Hi,
this is the first time when I write on mailing list.
If this subject was discussed in the past please don't shoot me, just trow
me a bone.

I was wonder if pf can detect packets that match a signature/fingerprint of
a virus, like it makes with the OS fingerprints.

Let's assume that I start to download eicar then pf 'see' the signature of
the pachet(s) and drop the connection.
Is this possible ?

PS. excuse my English