Re: [IMail Forum] Gateway Setup

Mon, 14 Oct 2002 09:06:44 -0700 

What I think is happening is you not only have relay for addresses set in
your gateway machines but also on the final destination box. This can cause
a hole as you experienced. The internal mail machine is set to relay for the
addresses of the gateways therefore anything coming from them will be sent
out. this is not necessary.
Do not set the final mail server to relay for addresses or if you must
exclude the addresses for the gateway machines.

Eric S

----- Original Message -----
From: "R. Scott Perry" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Monday, October 14, 2002 11:31 AM
Subject: Re: [IMail Forum] Gateway Setup


>
> >I have a dual gateway servers setup in front of my IMail server.... I
have
> >just noticed
> >that Say a Spammer on the following ip 192.168.0.1 claims his email
address
> >is [EMAIL PROTECTED] (which lets say is a VALID address), now he sends
mail
> >and it hits my gateway box and then forwards the mail to my Real Imail
> >Server Which Sees the IP as my Gateway not the IP where the Email was
Sent
> >from, so the mail goes to my users, hence an open relay if he knows one
of
> >my users Email Address.  What Option can I use to stop this from
happening.
>
> I'm confused.
>
> There doesn't seem to be any problem with spammers relaying mail through
> any of the servers.  It sounds like the problem is that a spammer can send
> mail to your users.  That's exactly how it should work.  The gateway
should
> not block any E-mail addressed to users at your domains, and your primary
> mailserver shouldn't block any E-mail addressed to users at your domains
> either (unless, of course, you are using anti-spam software/settings).  It
> doesn't matter what IP address or return address the spammer is using --
> the key is "so the mail goes to my users".  You would only be an open
relay
> if the gateway servers (or the primary server, if Internet accessible)
> would send mail to *external* domains ("to people who are not my users").
>
>                                                     -Scott
> ---
> Declude: Anti-virus, Anti-spam and Anti-hijacking solutions for
> IMail.  http://www.declude.com
>
> ---
> [This E-mail was scanned for viruses by Declude Virus
(http://www.declude.com)]
>
>
> To Unsubscribe: http://www.ipswitch.com/support/mailing-lists.html
> List Archive: http://www.mail-archive.com/imail_forum%40list.ipswitch.com/
> Knowledge Base/FAQ: http://www.ipswitch.com/support/IMail/
>


To Unsubscribe: http://www.ipswitch.com/support/mailing-lists.html
List Archive: http://www.mail-archive.com/imail_forum%40list.ipswitch.com/
Knowledge Base/FAQ: http://www.ipswitch.com/support/IMail/

Reply via email to