I can't comment on Exchange, as I am a Lotus shop, but my Domino server
has all the Anti-Relay settings on it. We use to have it setup this way
originally, then I implemented the Symantec Anti-Virus for SMTP Gateways
product, and it has the Anti-Relay in it. I am sure Exchange should have
the same capabilities.
Hope this helps.
Sean P. Donaghey
Sr. Technical Analyst
Hôtel-Dieu Grace Hospital
Windsor, Ontario Canada
Tel:(519) 973-4411 Ext. 3717
Fax:(519) 973-4650
Email: sdonaghey AT hdgh DOT org
Matt Arntsen <Matt.Arntsen AT FRANKLINCOVEY DOT COM>
Sent by: Mailing list for discussion of Firewall-1
<FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM>
05/25/2004 02:43 PM
Please respond to Mailing list for discussion of Firewall-1
To: FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
cc:
Subject: [FW-1] exchange 2003 best practices
In an attempt to limit email relaying, I was wondering how others have
set up their email routing with an exchange 2003 email server in
conjunction with their NG-AI R55 firewall. What is the best way to set
it up? I currently have a static NAT rule to send all email inbound. Our
email engineers want to prevent relays and are convinced it is the
firewall's responsibility. The also want to limit authorized IP
addresses which can connect to the email server. The problems I see with
this is that you cannot block the Internet from sending you an email.
Perhaps I am wrong but I keep telling them it is the function of the
email server to only allow emails destined to our domain and refuse all
others rather than forcing the firewall to do this. Perhaps I am wrong
and so I am hoping I can get some feedback. Thanks!
Matt
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
The information contained in this e-mail message is confidential and
protected by law. The information is intended only for the person or
organization addressed in this e-mail. If you share or copy the
information you may be breaking the law. If you have received this e-mail
by mistake, please notify the sender of the e-mail by the telephone number
listed on this e-mail. Please destroy the original; do not e-mail back
the information or keep the original.
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
|
