Spam Filter ISP Support Forum

  New Posts New Posts RSS Feed - Firewall as SMTP server
  FAQ FAQ  Forum Search   Register Register  Login Login

Firewall as SMTP server

 Post Reply Post Reply
Author
Mark Reimer View Drop Down
Guest Group
Guest Group
Post Options Post Options   Thanks (0) Thanks(0)   Quote Mark Reimer Quote  Post ReplyReply Direct Link To This Post Topic: Firewall as SMTP server
    Posted: 10 April 2003 at 12:54pm

SpamFilter is sitting on my DMZ, and my firewall is also a SMTP server. So the MAPS Blacklist servers will never be used (if I read the docs correctly), since my firewall is the initiating connection of SpamFilter. Is this true? If so, then the default configuration of Spamfilter will catch nothing for me. Is there any solution for this?

Back to Top
Bill Stewart View Drop Down
Guest Group
Guest Group
Post Options Post Options   Thanks (0) Thanks(0)   Quote Bill Stewart Quote  Post ReplyReply Direct Link To This Post Posted: 10 April 2003 at 2:33pm

What do you use your firewall's SMTP server for? Is its only function to forward mail to an incoming server? If so, then disable your firewall's SMTP server and use SpamFilter to listen for mail instead.

Back to Top
LogSat View Drop Down
Admin Group
Admin Group
Avatar

Joined: 25 January 2005
Location: United States
Status: Offline
Points: 4104
Post Options Post Options   Thanks (0) Thanks(0)   Quote LogSat Quote  Post ReplyReply Direct Link To This Post Posted: 10 April 2003 at 6:59pm

Mark,

SpamFilter is designed to be the proxy for your incoming email. The firewall usually simply listens (the fancy ones can do virus scanning at this point) on port 25 and then re-routes the connection to your SMTP server (which should be SpamFilter if you wish to use it).

If configured correctly (and if the firewall supports it) when passing the connection to the DMZ the server should see the original IP in the packet, not the firewall's IP. A similar thing should happen with your web servers inthe DMZ for example. They should see the real IP of the internet users, *not* the firewall's IP. If someone were to attempt a hack on your webserver, it would be very hard to find out who did it if you did not know the IP. It's usually very hard to cross-reference webserver logs with firewall logs to find out who connected when, especially when the clocks are not synchronized.

Roberto Franceschetti
LogSat Software

Back to Top
 Post Reply Post Reply
  Share Topic   

Forum Jump Forum Permissions View Drop Down



This page was generated in 0.121 seconds.