> The problem that we're seeing is that some messages are doing an > end-run around the Exim box and sending directly to the iMail box > despite the fact that there are no mx records that point to the > iMail box.
Quite common these days; anything on TCP 25 is vulnerable. > ...is there a way to configure the iMail box so that it does not > accept any SMTP connections unless they come from the specified > network or are authenticated via SMTP AUTH? If you have to accomodate wildcard (unknown) IPs, there's no way to restrict by IP. IMail does not allow you to reject messages for local virtual hosts. The tactics you can use, in order of preference, are: - require VPN connections for SMTP AUTH connections - run your server on a port other than 25 If you are using IMail's NT-integrated userbase, another option is to run MS SMTP on another port to perform AUTH connections. Since all mail will be considered a relay attempt, all connections will have to be authenticated, as you desire, and the userbase as always synchronized between the two hosts. > Something I just noticed in the documentation; I see that iMail will > accept any SMTP connections that either originate from those ip's or > are destined for addresses on those ip's. Would this be a simple > matter of excluding the iMail box's ip from the accepted range? Are > there any unforeseen consequences that I should know about before > excluding that ip, like screwing up internal mail delivery or > locally generated bounce messages? The feature you're referring to won't affect the issue at hand. Ignore it. --Sandy ------------------------------------ Sanford Whiteman, Chief Technologist Broadleaf Systems, a division of Cypress Integrated Systems, Inc. e-mail: [EMAIL PROTECTED] SpamAssassin plugs into Declude! http://www.mailmage.com/products/software/freeutils/SPAMC32/download/release/ Defuse Dictionary Attacks: Turn Exchange Addresses into IMail Aliases! http://www.mailmage.com/products/software/freeutils/exchange2aliases/download/release/ To Unsubscribe: http://www.ipswitch.com/support/mailing-lists.html List Archive: http://www.mail-archive.com/imail_forum%40list.ipswitch.com/ Knowledge Base/FAQ: http://www.ipswitch.com/support/IMail/
