Greetings! We have an infected machine somewhere sending spam. I can think of one way to stop it, but I need assistance.
Currently, we are allowing pretty near any out-bound traffic (yeah, I know...) What I need is a way to allow outbound traffic at TCP port 25 (SMTP) to two IP addressed ONLY. In other words, we need to block anything going to a host other than to our Postini accounts (and then the Postini accounts should block the spam). Rather than having to try to figure out exactly which ports for outbound traffic should be allowed, is there a way to order the policies in the "Trusted to Untrusted" to set the first one to route all traffic to one of two hosts, then block all Port 25 traffic, then allow the rest? It could be done via CLI, I'm sure, but I'm unfortunately not trained to use this. Thanks! -- Richard D. McClary Systems Administrator, Information Technology Group ASPCA® 1717 S. Philo Rd, Ste 36 Urbana, IL 61802 [email protected] P: 217-337-9761 C: 217-417-1182 F: 217-337-9761 www.aspca.org The information contained in this e-mail, and any attachments hereto, is from The American Society for the Prevention of Cruelty to Animals® (ASPCA ®) and is intended only for use by the addressee(s) named herein and may contain legally privileged and/or confidential information. If you are not the intended recipient of this e-mail, you are hereby notified that any dissemination, distribution, copying or use of the contents of this e-mail, and any attachments hereto, is strictly prohibited. If you have received this e-mail in error, please immediately notify me by reply email and permanently delete the original and any copy of this e-mail and any printout thereof. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
