[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] RE: [FW1] SMTP RELAYING
Here's a basic setup for anti-relay: Create/Edit a resource SMTP object. Give it its name, color,etc. if new. You can leave the mail server field blank (fw1 will resort to using the original destination of the email) In the match tab set sender to * Set recepient to *@yourdomain.com If you have multiple domains enter like so: *@{yourdomain1.com,yourdomain2.com} Set the other tabs... Go to Policy->Properties In the Security Servers tab, set your SMTP Security Server Welcome Message (Good to edit this, by default it reports itself as FW-1...) Make/Edit your existing rule: ANY yoursmtpserver YOUR_SMTP_RESOURCE ACCEPT This is how it is basically done...may want to adjust depending on your rulebase, mailing systems, etc..... With FW-1 v4.1 Service Pack 3 the SMTP Security Server can filter based on filenames now...without a 3rd party tie in (although you probably can anyways with a 3rd party OPSEC Anti-Virus product...) Amin Tora ePlus Technology This message may contain confidential and/or proprietary information, and is intended only for the person / entity to whom it was originally destined. The use of this information and unauthorized access to this information for any other means is strictly prohibited. The content of this message may also contain private views and opinions that do not constitute a formal disclosure or commitment unless specifically stated. -----Original Message----- From: Muhammed Riyas Kunhi [mailto:[email protected]] Sent: Tuesday, December 26, 2000 12:37 AM To: '[email protected]' Subject: [FW1] SMTP RELAYING Dear Friends, I am using checkpoint firewall1 ver 4.0 with windows Nt Service pack 4.0. And My mail server (Exchangeserver5.5 with srv4 and win NT4 with Srv6a) is configured going through firewall and I am using antivirus server as well. >From my exchange server I blocked the smtp relaying by using routing restriction for only authenticated user and it is working fine for internal network. But if any body try to use our mail server for relaying their mail from outside firewall, then firewall is just allowing to come inside to the exchange and exchange is making a non delivery for this mail. Is there any way to block the SMTP relying from firewall itself. Any help will be appreciated. Thanks ============================================================================ ==== To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ============================================================================ ==== ================================================================================ To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================================================
|