Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1074
Views
0
Helpful
5
Replies

Need Allowing SMTP traffic from my network only BLOCK outside network to used SMTP.

csawest.dc
Level 3
Level 3

‎04-09-2010 11:42 PM - edited ‎03-04-2019 08:05 AM

Dear Experts,

I have facing very much problem of SMTP traffic , lots of unknown outside the network used my mail server SMTP port,

heavy much mail send through my mail server ( used SMTP port) from outside network.

I need it to block smtp port from outside network , only allowed from my network.

i am using Cisco 3845 router.

my Mail server IP 120.111.234.4

If I put in access lists for each range and nothing else associated with SMTP would that accomplish the task?

Allowing SMTP traffic from on a few IP ranges ( my network only BLOCK outside network need to configure my Cisco 3845 to only allow SMTP traffic from certain IP ranges to my mail server

so what i can do to solve this issue.

my network 120.111.234.0/22

                   221.212.142.0/24

                   210.212.152.0/25

So plese give me the soluction regarding the same.

Any help would be great!

Thanks,

Vaib...

Allowing SMTP traffic from on a few IP ranges

Labels:
0 Helpful
5 Replies 5

Jennifer Halim
Cisco Employee
Cisco Employee

‎04-10-2010 12:06 AM

You would need to configure your mail server to not allow mail relay through it.

Don't think you can block mail traffic from outside with an access-list, as it will block legitimate mail traffic inbound.

0 Helpful

csawest.dc
Level 3
Level 3
In response to Jennifer Halim

‎04-10-2010 12:11 AM

Dear Halijenn,

I already congured in my mail server ( no mail relay). but still facing the problem i need to block smtp through outside the network.

Thanks in ADV,

Vaib...

0 Helpful

Jennifer Halim
Cisco Employee
Cisco Employee
In response to csawest.dc

‎04-10-2010 12:16 AM

You would need to have Mail gateway, like Iron Port or CSC module on ASA firewall for example to be able to block those traffic. With access-list, you would be blocking legitimate mail traffic as well because access-list only looks at layer 3/4, not deep into the email itself.

0 Helpful

csawest.dc
Level 3
Level 3
In response to Jennifer Halim

‎04-10-2010 12:24 AM

Dear Friend,

I need to config in my router SMTP port not allowed to used of outside the network , it;s only allowed my network ips only. other ips block to used SMTP

Thanks,

Vaib...

0 Helpful

paolo bevilacqua
Hall of Fame
Hall of Fame
In response to csawest.dc

‎04-10-2010 03:11 AM

Do you understand how email in the internet works ?

Are you able to configure correctly an email server ?

From your posts above, seems like the answer to both questions is "no".

In that case, I recommend you engage a reputable IT professional to help you.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card