[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] Re: [FW-1] Stopping SMTP Relay on CP FW4.1
actually I just gor a list of the SMTP servers from our ISP and put them in a group and added a rule that says... ISP_SMTP Mail Server SMTP ALLOW Internal Users This way only SMTP mail being delivered from our ISP and internal users comes through. Everything else is just rejected. Quick and dirty, but it works, and no complaints so far. Only problem is that if our ISP changes mailserver IP numbers or something..... -mike > ------------------------------------- > Michael Perbix > Telecommunications Specialist > Lower Merion School District >- Phone >- Fax > > > -----Original Message----- > From: Tyler Beard [SMTP:[email protected]] > Sent: Thursday, December 13, 2001 11:31 PM > To: [email protected] > Subject: Re: [FW-1] Stopping SMTP Relay on CP FW4.1 > > Sorry, minor error, instead of SMTP_Mapped replace with your resource i.e. > SMTP ->email. > > -----Original Message----- > From: Tyler Beard > Sent: Friday, December 14, 2001 3:15 PM > To: 'Mailing list for discussion of Firewall-1' > Subject: RE: [FW-1] Stopping SMTP Relay on CP FW4.1 > > > Robert, > Under the match tab on your 'SMTP->email' do you specify only the > email domains that belong to you? Eg {*.mydomain.com, *.mydomain2.com} > Then you just need one rule: ANY FIREWALL SMTP_Mapped ACCEPT. > If this still does not work make sure you have this line in > $FWDIR/conf/fwauthd.conf : > > 25 in.asmtpd wait 0 > > Regards > > Tyler > > -----Original Message----- > From: FW1-List [mailto:[email protected]] > Sent: Friday, December 14, 2001 2:28 PM > To: [email protected] > Subject: [FW-1] Stopping SMTP Relay on CP FW4.1 > > > I just found out that my CheckPoint Firewall is allowing > SMTP Relaying. How do I shut it off but still allow SMTP mail to come in > and get redirected to my email server? I tried using the rule ANY > FIREWALL SMTP_Mapped ACCEPT (where I have smtp_mapped mapped over to my > E2k server), but when I did this, all SMTP was rejected. I put back my > rule of ANY FIREWALL SMTP->email ACCEPT (where I had SMTP with a > Resource called email) and email was allowed in again but it turned on > relaying again. Any suggestions?? > > Any help would greatly be appreciated. > > Robert. > [email protected] <mailto:[email protected]> > ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= To set vacation, Out Of Office, or away messages, send an email to [email protected] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= If you have any questions on how to change your subscription options, email Ron Alcatraz at: [email protected] =================================================
|