Re: [exim] How to check to see if email went through gateway first

Thu, 15 Apr 2010 20:33:14 -0700 


On 10-04-15 3:08 PM, "Dave Evans" <[email protected]> wrote:

> On Fri, Apr 09, 2010 at 11:52:06PM -0400, Frank DeChellis wrote:
>> Hi there,
>> 
>> We run exim 4.67 and we have Barricade MX as our gateway filter.  We
>> installed the filter and changed our MX record 3 weeks ago.   The filter
>> works great, but lots of mail is still getting sent directly to our SMTP
>> server.  I can say, with great certainty, that 100.1% of the email going
>> directly to our SMTP is spam.
> 
> So, let me just check I've got this right:
> 
>  * Exim is accepting connections on port 25 from any IP
>  * the Barricade box connects directly to Exim
>  * so if Exim accepts a connection from the Barricade box, it should process
>    the mail as normal
>  * and if Exim accepts a connection from anywhere *other* than the Barricade
>    box, it is (as you say) 100.1% spam
> 
> Have I understood correctly so far?
> 
> Final question: before you changed your MX record 3 weeks ago, was the TTL on
> that (old) DNS record less than 3 weeks?
> 
> If yes, then your assertion about 100.1% spam is correct (give or take 0.1%),
> so you can either:
> 
>  * configure your firewall to allow connections to Exim only from the
>    Barricade box
> 
> or
> 
>  * have Exim deny all connections except those that come from the Barricade
>    box (deny !hosts = $ip.of.barricade.box in acl_smtp_connect)
> 
> If the Barricade box does something /other/ than connect directly to Exim,
> then none of what I've said above applies, and you should describe your set-up
> in more detail.

THANKS!  You got it right.  Sorry if I didn't add enough details.  I have
many domains on this exim install but only 2 have the barricade box as the
primary MX.  So.  If I also add a line to the same check:

domains = +filtered_domains

Then it would allow direct connections for other domains, but for the
domains listed on filtered_domains it must come from the barricade box.
Is this correct?


Frank DeChellis
President, Internet Access Worldwide
Welland, Ontario, Canada
www.iaw.com




-- 
## List details at http://lists.exim.org/mailman/listinfo/exim-users 
## Exim details at http://www.exim.org/
## Please use the Wiki with this list - http://wiki.exim.org/






















					Reply via email to