Good morning all. Declude Hijack tracks the number of outgoing e-mail by IP address.
But what about an office, such as ours, that uses a firewall with a DMZ, where the Imail is in the DMZ and the internal network uses NAT. Therefore, Declude Hijack sees all the users from the internal network as one IP address, that of the IP address of the firewall. Here is the exact setup: MS ISA server three homed in a DMZ setup. IP of DMZ NIC on ISA is x.x.x.5. IP of Internal NIC on ISA is 192.168.10.5 IP of Imail Nic is x.x.x.17. Imail receives the e-mail as if it came from the DMZ NIC and lists the from address as x.x.x.5. The problem can arise with many users on the internal network sending e-mail, whereas Declude Hijack sees all those messages as one user. I do not want to allow that IP, as I do want the protection that Hijack brings. For example, we had a developer use a "program" that was designed to send out bulk e-mail. Of course Hijack caught it. But it also caught every other e-mail going out from all other uses in the office. Is there a way for Hijack or Imail to get the IP address one step back? John Tolmachoff IT Manager, Network Engineer 211 E. Imperial Hwy., Suite 106 Fullerton, CA� 92835 714-578-7999, ext. 104 [EMAIL PROTECTED] www.reliancesoft.com � � --- [This E-mail was scanned for viruses by Declude Virus (http://www.declude.com)] --- This E-mail came from the Declude.JunkMail mailing list. To unsubscribe, just send an E-mail to [EMAIL PROTECTED], and type "unsubscribe Declude.JunkMail". You can E-mail [EMAIL PROTECTED] for assistance. You can visit our web site at http://www.declude.com .
