I have a watchguard firebox as well, and have been unsucessful in doing what you all are trying to do.
If you set up a user rule on port 25, you lose all the functions of the proxy. If you retain the proxy, smtp auth doesn't work because the firebox doesn't speak ESMTP very well. At one point, I attemtped to set up an NT user group for my outside salespeople to authenticate with the firebox and use the smtp filter instead of the proxy. According to watchguard, there is a bug in the software that does not allow you to use the filter and the proxy at the same time, so I'm back to square one. If you all figure out how to do this, I would be MOST interested in hearing how it was accomplished! Thanks, Sharyn Schmidt Network Specialist Florida Distillers Company (863) 956-1116 x139 -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Joseph Marlin Sent: Friday, January 04, 2002 10:17 AM To: [EMAIL PROTECTED] Subject: RE: [IMail Forum] Watchguard port 25 behavior I actually wound up doing that, but you lose all the other benefits of the SMTP proxy. You can no longer automatically strip an attachment, replace it with an attachment that explains why the attachment was stripped and let the rest of the email go on to its intended recipient. You can no longer strip off those overly informative headers from outgoing email that tell the computer name and ip address of the sender or any other headers you wish to strip from incoming or outgoing email. It is more difficult, though possible, I think, to stop all mail from, say, Taiwan or China or Russia or any other country (we deal with US Workers Comp Claims and there is no legitimate business reason to receive mail from those location. I miss quite a few things about it, but am trying to write rules that come close to approximating those features. Watchguard did an amazing job with attachments - far, far better than the results I am getting with rules. Can you write a rule to strip a .com attachment without "catching" emails with tag lines that include web sites? That surely is possible, but every attempt I have made so far winds up "capturing" emails that mention a .com address, whether web site or email address. Joseph Marlin Director of Information Technology Unified Health Services -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Craig Gittens Sent: Friday, January 04, 2002 8:34 AM To: [EMAIL PROTECTED] Subject: RE: [IMail Forum] Declude DNS report on IMail server Of course you can change Watchguard behaviour. I use them and all you have to do is create a user rule for port 25. That way it will stop soing it's default smtp proxy. Craig. Please visit http://www.ipswitch.com/support/mailing-lists.html to be removed from this list. An Archive of this list is available at: http://www.mail-archive.com/imail_forum%40list.ipswitch.com/ We are the worldwide producer and marketer of the award winning Cruzan Single Barrel Rum, judged "Best in the World" at the annual San Francisco Wine and Spirits Championships, and the artisan tequilas of Porfidio 100% Agave Tequilas, judged "Best Tequila" four years running by the Wine Enthusiast magazine. For more information, please click (go to) <html><a href="http://www.cruzanrums.com";>http://</a><a href="http://www.cruzanrums";>www.cruzanrums.com</a></html> Please visit http://www.ipswitch.com/support/mailing-lists.html to be removed from this list. An Archive of this list is available at: http://www.mail-archive.com/imail_forum%40list.ipswitch.com/
