hi. This issue can be addressed with the SMTP resources. Please follow the below mentioned steps, 1, Create a SMTP resource, example smtp-allow and on the match tab of the same resource, Senders * Recipients *@customer-email domain name 2, Create second SMTP resource, example smtp-drop and on the match tab of the same resource, Senders * Recipients * 3, Create third SMTP resource, example reply-smtp-allow on the match tab of the same resource, Senders *@customer-email domain name Recipients * Now we use the above mentioned SMTP resources in the rules, 1, Any  Mail-server  smtp with smtp-allow resource (first resource)  Accept 2, Any  Mail-server  smtp with smtp-drop resource (second resource)  Drop 3, Mail-Server  Any  smtp with reply-smtp-allow (third resource)  Accept In the above rule base the second rule will drop the unknown people who all are using our customer mail server as relay agent will be droped. I have tested this in our lab it is working fine. If posible please test this today itself and mail me the results, in case of any problem I can test the same in the next three holidays. Expecting all your comments and results. Regards, lokesh >From: "Mohan Sundar" <[EMAIL PROTECTED]> >To: [EMAIL PROTECTED] >Subject: [FW1] SMTP relay & Spam mail problem >Date: Thu, 24 May 2001 02:05:02 +0530 > > >Hi All, > > > I have CheckPoint Firewall-1 ver 4.1 with SP3, Interscan Viruswall ver >3.4 and MS Exchange server 5.5. > I have SMTP resource (Viruswall) rule to scan all Inbound SMTP traffic. I >have few POP3 users who uses my Exchange server as a relay host. this >setup >is working well without any problem. > > But few days back I came to know that somebody is using my Exchange >server >as a relay host and generates Spam mails,I tried the following: > >1.I enabled authentication for POP3 users in Exchange server - it > stopped Spam mail generation, but POP3 users not able to send mails. > >2.I enabled " HOSTS AND CLIENTS CONNECTING TO THESE INTERNAL ADDRESS " > option in Exchange server and specified my Exchange server IP address > - Now The spam mail got started but POP3 users able to send & > receive mails. > >I need to restrict my Exchange server not to be used as relay host except >my >autherised users, without disabling SMTP virus scanning. >Would like to hear your valuble suggestions. > >Thanx in advance. > >Regards, >MOHi > >_________________________________________________________________________ >Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. > > > >================================================================================ > To unsubscribe from this mailing list, please see the instructions at > http://www.checkpoint.com/services/mailing.html >=================== _________________________________________________________________________ Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. ================================================================================ To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================================================
