I assume it is behing the fireall, else the only option is to
configure it so it can't be use to relay external mail. If it
can't than it is an obsolete mail server and update it.
If it is behing the firewall and you use a SMTP security server
ressource to filter ingoing mail, then it's the FW-1 which does
the relaying and you have to configure it to reject relay of
external mail.
If it is behing the firewall and you don't use a SMTP security
server ressource to filter ingoing mail you can configure your
mail server to rject relay of external mail if it can or you
can use the FW-1 to reject it
To use the firewall to reject external relaying use two SMTP
security server ressource
First SMTP-US:
Match recipient: {*@domain1.xxx,*@domain2.xxx} -> Include all your mail domains
Action2: -> Set it for your need if you use a CVP server or not
Second SMTP-ALL:
Match sender: *
Match recipient: *
Action2: -> CVP server none
The first match all mail for you and the second all mail at large
Then at two rules:
First: From All to your mail server(s) service SMTP-US action accept
Second: From All to your mail server(s) service SMTP-ALL action reject
That way all attempt to relay mail to external domaines will be rejected
Yves Belle-Isle
----- Original Message -----
From: "Timothy K. Cornelius" <[EMAIL PROTECTED]>
To: "'[EMAIL PROTECTED]'"
<[EMAIL PROTECTED]>
Sent: Thursday, September 27, 2001 10:16
Subject: [FW1] Stopping mail from looping into domain and back out
>
>
>
> We are having a unique problem here. We had someone go to our external
> website( maintained by a vender outside the company) and take an email
> address([EMAIL PROTECTED]) and submit it to multiple spam and freebie sites.
> As a result of that someone, either by sniffing the email tranport or just
> sending random emails, determined that one of our mail servers is an
> internet mail relay agent, which it is. It receives and sends all our
> external email from our mail container box. I'm not sure if the spam problem
> and the relay problem are related or not. But my first concern is to stop
> email from being relayed through our network and back out to other sites.
> what rule can I setup on the firewall(FW-1 ver. 4.1 build 41710) to stop
> this relay problem? I am opened to any suggestions.
>
> Tim Cornelius
> LIFE Outreach International
> System/Network Admin
> ---
> Outgoing mail is certified Virus Free.
> Checked by AVG anti-virus system (http://www.grisoft.com).
> Version: 6.0.281 / Virus Database: 149 - Release Date: 9/18/2001
>
>
>
> ================================================================================
> To unsubscribe from this mailing list, please see the instructions at
> http://www.checkpoint.com/services/mailing.html
> ================================================================================
>
>
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
