On the GNAC firewall list [EMAIL PROTECTED] wrote:
>I don't see how the version of Lotus
>Notes we're running has anything to do with it. It's the SMTP/Mime MTA
>software running on the MTA that's the problem. No?
Well, the SMTP/Mime MTA software comes with Lotus Notes, doesn't
it? If it's separate, change it. If you can upgrade to
something that does stop relaying, do it.
>We do have a Cisco PIX firewall that is still running with it's generic
>setup. According to Cisco documentation, outbound connections are
>allowed while direct inbound connections are not. My thinking is that I
>would need to reconfigure the PIX to deny any unwanted connections from
>coming in. Any ideas on how to do this without preventing legitimate
>connections from coming in or going out? Thanks in advance for your
Sorry, a PIX cannot help stop relaying through an authorized
mail server (without either stopping incoming mail altogether,
or adding another machine). Hmmm ... would be possible
though ... shouldn't be too hard in fact ... Cisco, you
listening?
Since you probably can't just junk your Lotus, you'll have to
put something to take incoming mail from the big bad world.
There are lots of programs to protect baby MTAs from getting
their candy stolen, some of which will not require the addition
of an additional machine.
My preferred solution would be a 486 with 32 MB RAM and a 200,
maybe a 500 MB hard disk, using some kind of free Unix, but if
you don't have Unix expertise handy you'll be better off with
some commercial MTA filter.
Yell at Lotus support, they probably get the question often
enough that they have a list of solutions, product names, and
contact info beside the phone (this is the second or third time
this month, that's nine days, that I answer this question).
BTW I think I like your ISP :-)
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
