Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations wOOdy-Soft on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

connecting to port 25-need to secure

Status
Not open for further replies.
troytunes

troytunes

MIS
Oct 27, 2004
3
US
I have relaying blocked in the SMTP settings by making my internet POP3/SMTP users authenticate. That's fine.

Now, can I make all connections to port 25 have to authenticate as well? Someone right now could use telnet to connect to my port 25 and send someone in the network an email.

I don't want to block port 25 and make all those Outlook clients use VPN to send mail, and I don't see the setting to do this in SMTP properties...I can block IP's, but that's about it.

Thanks for any help.
 
Sort by date Sort by votes
huh? you want every server in the world to authenticate to you before sending emails?

well, you CAN...

I'd recommend that you don't though.

<signature sold. new owner moving in shortly>
 
Upvote 0 Downvote
Oh ya, here's the third party stuff:

We use an outside email filtering service that sends cleaned emails to our server on port 25...but I guess even those 8 servers would have to be allowed through somehow, maybe I could let their servers connect without authenticating but nothing else...

hmm...getting more and more complicated to plug this port 25 hole...it just bugs me that some disgruntled employee could get a virus-ridden email directly to one of our users so easily on that port...
 
Upvote 0 Downvote
Under you default SMTP Virtual server properties / Access / connection. Enter the IP of the machine that is forwarding you your cleaned e-mail. I have the same setup. Works great, you might have to add a few other IP's in some cases (just think about this when you are pulling your hair out when someone can not sent).

Now if I could only have that setup for my main domain and the default setup for my secondary domain (secondary isn't getting filtered).
 
Upvote 0 Downvote
Sounds good for a small group of users, but I've got a few hundred users making connections from all over the country to this server to send their company email.

...I'm thinking this can't be done unless I get all of those users on VPN and then stop the world from connecting to my server on 25, just let the filtering servers in...
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

T
  • Locked
  • Question
How to use third party mail security gateway to scan internal/inter-domain mails in Exchange On-Premise?
Replies
3
Views
3K
DrB0b
DrB0b
Satishkumar007
  • Locked
  • Question
Help needed to recover after complete site failure
Replies
0
Views
3K
Satishkumar007
Satishkumar007
PatrickRoggers
  • Locked
  • Helpful tip
Safest Way to Import PST file into Exchange Online
Replies
0
Views
3K
PatrickRoggers
PatrickRoggers
ComputersUnlimited
  • Locked
  • Question
Migrating to Exchange 2019
Replies
0
Views
3K
ComputersUnlimited
ComputersUnlimited
DrB0b
  • Locked
  • Question
Moved to 365 in cloud, cannot get iPhones default mail app to connect
Replies
2
Views
3K
Priyanka_Chauhan
Priyanka_Chauhan

Part and Inventory Search

Sponsor

Back
Top