KBA-01209
This article describes protecting your server from relaying mail.
The best way to prevent MDaemon from relaying mail is to use Domain/IP pairs. To configure this open MDaemon and from the menu bar:
IP Shielding
When configured, a message that claims to be from one of the domains listed the IP address delivering the message must be listed in the domain IP pair. For Example, if you have “altn.com, 192.168.0.*” listed in your currently defined domain/IP pairs, a message from user@altn.com that is being received from 10.0.0.25 will not be accepted by MDaemon.
If you have users connecting from dynamic IP addresses on the internet that need to be able to send mail through MDaemon they will need to use ESMTP Authentication. To configure ESTMP Authentication:
RELAY CONTROL
Relay Control is used to prevent mail that is not TO or FROM a local user from being accepted in MDaemon.
If you are receiving spam or other forms of abuse from a specific IP address, you configure MDaemon to drop connections coming from that IP address. Note: This will only work if you are receiving mail directly using SMTP. It will not work with mail received using DomainPOP or MultiPOP.
Alt-n
Purpose & Scope
This article describes protecting your server from relaying mail.
Procedure
The best way to prevent MDaemon from relaying mail is to use Domain/IP pairs. To configure this open MDaemon and from the menu bar:
IP Shielding
- Select Security
- Select IP Shielding/Auth/POP before SMTP...
- Check the box for Messages to valid local users are exempt from domain/IP matching
- In the Domain name field enter the domain name that you wish to associate with an IP address or range
- In the IP address field enter the IP address or range to associate the domain name with
- Click on the Add button
- Click the Apply button
- Click the OK button
When configured, a message that claims to be from one of the domains listed the IP address delivering the message must be listed in the domain IP pair. For Example, if you have “altn.com, 192.168.0.*” listed in your currently defined domain/IP pairs, a message from user@altn.com that is being received from 10.0.0.25 will not be accepted by MDaemon.
If you have users connecting from dynamic IP addresses on the internet that need to be able to send mail through MDaemon they will need to use ESMTP Authentication. To configure ESTMP Authentication:
- Select Security
- Select IP shielding/Auth/POP before SMTP
- Select the SMTP Authentication tab
- Check the box for Authenticated senders are valid regardless of the IP they are using
- Click the Apply button
- Click the OK button
RELAY CONTROL
Relay Control is used to prevent mail that is not TO or FROM a local user from being accepted in MDaemon.
- Select Security
- Select Relay/Trusts/Tarpit/Reverse Lookups/LAN IPs
- Select the Relay Settings tab
- Check the box for This server does not relay mail for foreign domains
- Check the box for Sender’s address must be valid if it claims to be from a local domain
- Click the Apply button
- Click the OK button
If you are receiving spam or other forms of abuse from a specific IP address, you configure MDaemon to drop connections coming from that IP address. Note: This will only work if you are receiving mail directly using SMTP. It will not work with mail received using DomainPOP or MultiPOP.
- Click Security
- Click Address suppression/IP screening/Host screening
- Click the IP Screening tab
- In the Remote IP box type the IP of the server that you wish to block
- Click the option This IP can not connect
- Click the Add button
- Click the Apply button
- Click the OK button
Alt-n
0 коммент.:
Отправить комментарий