On 07/27/2016 08:24 PM, Roger Goh wrote: > Our headquarter's email server auto-forward emails over to our > email server & I have a concern: > Can source (ie smtp.zzzbank.com.au <http://smtp.zzzbank.com.au> & > srvm02.zzzbank.com.au <http://srvm02.zzzbank.com.au> below) > & the IP addresses be spoofed? Yes. If you are concerned about this and you control the domain in question, you probably should put legitimate sending servers on their own subnet and limit SMTP traffic accordingly.
I get into trouble whenever I try to mess with firewalls myself, but I believe it would then be possible to reject spoofed IP addresses because they would be on the wrong interface. -- David Benfell, Ph.D. benf...@parts-unknown.org
signature.asc
Description: OpenPGP digital signature
