Educause Security Discussion mailing list archives
Re: smtp redirection
From: Les LaCroix <Les.LaCroix () CARLETON EDU>
Date: Tue, 10 May 2005 16:43:21 -0500
We have an antispam/antivirus firewall from Barracuda Networks, with MX records pointing to it for all of our mail domains. All incoming mail is passed along to a second antivirus appliance (McAfee-branded), which catches another several dozen viruses a day. We also have a separate smtp relay for our users' mail clients. It requires authentication and encryption, even from on campus, except for a small number of known and trusted servers on campus. In our case, separating MX and smtp relaying for clients is a necessity. The antispam firewall can't act as a relay: it only accepts mail for the local domains. Separating them was something we wanted to do anyway. ACLs prevent incoming smtp directly to our McAfee antivirus appliance, mailbox hosts and other misc. destinations (e.g. listservs). Prior to setting up the ACLs, spammers would connect to pretty much anything that would listen on port 25. Les LaCroix Associate Director of Network Services Carleton College ********** Participation and subscription information for this EDUCAUSE Discussion Group discussion list can be found at http://www.educause.edu/groups/.
Current thread:
- Re: smtp redirection, (continued)
- Re: smtp redirection Valdis Kletnieks (May 10)
- Re: smtp redirection Bruce Hudson (May 10)
- Re: smtp redirection Tom Bossie (May 10)
- Re: smtp redirection Flagg, Martin D. (May 10)
- Re: smtp redirection Graham Toal (May 10)
- Re: smtp redirection Paul Russell (May 10)
- Re: smtp redirection Valdis Kletnieks (May 10)
- Re: smtp redirection Mark Borrie (May 10)
- Re: smtp redirection Valdis Kletnieks (May 10)
- Re: smtp redirection John (May 10)
- Re: smtp redirection Les LaCroix (May 10)
- Re: smtp redirection Mark Borrie (May 10)
- Re: smtp redirection David Shettler (May 10)
- Re: smtp redirection Chris Edwards (May 11)
- Re: smtp redirection Michael_Maloney (May 11)