I'm running 17.5.4 in MTA mode and I'm getting absolutely buried in spam. I've been working on a list of offending IPs and ranges etc and have a list created under "hosts and services". I'm realizing now that setting up a rule to block those IPs from passing through to the the LAN side is useless as the connections are being accepted on the WAN side by the MTA. That said, I have set all destination interfaces and zones on the rule to "Any" which in theory should include the WAN side. It's not working out. All of the mail servers in the list are still able to bombard me and I don't see any effective way to block them. Any thoughts?
By the way, the block rule is at the top of the list. I also saw a thread where someone suggested using an ACL but "smtp" or "any" protocol isn't an option? I really want the XG to work out but I'm after a few years of use, I'm thinking it wasn't and still isn't ready for prime time.
Thanks
Gary
This thread was automatically locked due to age.
