Re: SMTP behind NAT

[krymson () gmail com]

Since this is a dorm, my guess is the university is simply trying to give themselves a fighting chance against any 
spambots or virus infections that install spambots on student computers (systems they won't be able to control). If 10 
students run spambots that pump out of the same block of public IPs, they could quickly get blacklisted and that just 
plain sucks to deal with. Let alone the bandwidth that can consume for spam.

If you block outbound SMTP from everything but your own open relay that students can use, you probably block most of 
the spam that may be generated because it won't be smart enough to know there's an open relay nearby.

Likewise, if some student or attack is smart enough to see the open relay, your local admins will be able to track it a 
bit easier. Look at th open relay logs, find the computer spewing the garbage.

I would be willing to bet your university doesn't much care if you want to VPN to a mail server of your choice and send 
mail, or use a different port to connect out. I think they're just protecting their external IP profile and bandwidth.


<- snip ->
> Is there a 'free' ;-) wireless connection involved here?
No. It's the network of a students dorm.

Regards,
Georg

------------------------------------------------------------------------
This list is sponsored by: InfoSec Institute

Need to pass the CISSP? InfoSec Institute's CISSP Boot Camp in both Instructor-Led and Online formats is the most 
concentrated exam prep available. Comprehensive course materials and an expert instructor means you pass the exam. Gain 
a laser like insight into what is covered on the exam, with zero fluff! 

http://www.infosecinstitute.com/courses/cissp_bootcamp_training.html
------------------------------------------------------------------------