Not entirely true, at least on the SMTP (port 25) side. You could set the IMS to only accept connections from your firewall, and have the firewall proxy (rather than just filter) mail. Unfortunately, many firewalls won't proxy SMTP.
------------------------------------------------------ Roger D. Seielstad - MCSE MCT Senior Systems Administrator Peregrine Systems Atlanta, GA http://www.peregrine.com > -----Original Message----- > From: Andrew Chan [mailto:[EMAIL PROTECTED]] > Sent: Monday, October 22, 2001 2:16 PM > To: Exchange Discussions > Subject: RE: Disabling telnet sessions to ports 25, 110... > > > I think he wants to keep port 25 and 110 open, but don't want > to anybody > to be able to telnet to those ports. Sorry, AFAIK, that won't be > possible. Unless you don't run TCP/IP which smtp and POP is based on. > So, you are pretty much out of luck there. Because it's a protocol > issue. Telnet is just a program based on that protocol. > Since you have > to allow mail and POP access for people from outside, you just have to > live with it. > > Andrew, > MCSE (NT & W2K) + CCNA > > > -----Original Message----- > From: Andy David [mailto:[EMAIL PROTECTED]] > Posted At: Monday, October 22, 2001 12:44 PM > Posted To: NewsgroupDiscussion > Conversation: Disabling telnet sessions to ports 25, 110... > Subject: RE: Disabling telnet sessions to ports 25, 110... > > > Block Port 110 then... > Sounds like you are already blocking telnet.(Port 23) > Leave 25 (SMTP) open of course. > > > > > -----Original Message----- > From: James Barr [mailto:[EMAIL PROTECTED]] > Sent: Monday, October 22, 2001 1:58 PM > To: Exchange Discussions > Subject: Disabling telnet sessions to ports 25, 110... > > > Hello, > > How do I disable a telnet session to ports 25 and 110 (i.e., get > "Connection Refused" when attempting this) on my Exchange > 5.5, SP4 box? > The machine is running NT 4.0, SP6. Some companies do this purposely, > others leave it open. Obviously, I don't want to stop mail from coming > in to the org, but I would prefer not to allow telnet sessions to the > box itself. Currently, my exchange server has relaying prohibited for > POP3 users. The firewall in front only allows ports 25, 110, and 443 > (for secure OWA) in to the server. > > Please advise, > > Jim Barr > > _________________________________________________________________ > List posting FAQ: http://www.swinc.com/resource/exch_faq.htm > Archives: http://www.swynk.com/sitesearch/search.asp > To unsubscribe: mailto:[EMAIL PROTECTED] > Exchange List admin: [EMAIL PROTECTED] > > _________________________________________________________________ > List posting FAQ: http://www.swinc.com/resource/exch_faq.htm > Archives: http://www.swynk.com/sitesearch/search.asp > To unsubscribe: mailto:[EMAIL PROTECTED] > Exchange List admin: [EMAIL PROTECTED] > > _________________________________________________________________ > List posting FAQ: http://www.swinc.com/resource/exch_faq.htm > Archives: http://www.swynk.com/sitesearch/search.asp > To unsubscribe: mailto:[EMAIL PROTECTED] > Exchange List admin: [EMAIL PROTECTED] > _________________________________________________________________ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin: [EMAIL PROTECTED]