Hey there,
I want to block certain countries to send emails to our mailserver. In a previous SFOS version, there was the possibility to block ip addresses unter PROTECT - Email - General Settings in the section "Blocked Senders".
Now we use SFOS v18.0.1.
So I tried to figure out how to block emails and the first thing I tested was to create a firewallrule, which will drop any connection from defined source networks or country groups:
Action: DROP
Source Zone: WAN
Source Network: <defined networks>
Destination Zone: Any
Destination Network: Any
Services: SMTP / SMTPS
I saw in the logviewer, that the connections are connected with this firewallrule (#87 in my case), but were showed as allowed (and unfortunately the emails are accepted as well).
I dont get this. In firewall rule I set the action DROP and in the logviewer it is allowed. There were several spam mails throwed into the quarantine. After a lookup in smtpd_main.log, the mails came from the explicit blocked sender ip addresses.
Am I missing something?
Is there any better possibility to block certain countries to send emails to us?
This thread was automatically locked due to age.
