This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

blocking countries from trying to relay our exchange server, same time keeping them from email us

Hi all

I see a lot of relaying attempts from specific country every day, i am tired of adding the new IP everyday to the firewall rule since they use a new IP every time

I can make a NAT for this country to re direct their request to fake server specifying the ports involved

I am thinking blocking ports (25,465,587,443.80) But we have vendors from this country who are trying to reach us to our email

I don't want to whitelist those vendors, its not continent since they might change their IP address or service or there might be more vendors trying to reach us

is there a way to block only the relay attempts? and how

thanks

This thread was automatically locked due to age.

Parents

0 rfcat_vk over 3 years ago

hi ,

please post your mail rule in detail.

ian

XG115W - v19.5.1 mr-1 - Home

If a post solves your question please use the 'Verify Answer' button.
Cancel
Vote Up 0 Vote Down

Cancel
0 leo hamel over 3 years ago in reply to rfcat_vk

firewall or nat?
Cancel
Vote Up 0 Vote Down

Cancel
0 rfcat_vk over 3 years ago in reply to leo hamel

firewal

XG115W - v19.5.1 mr-1 - Home

If a post solves your question please use the 'Verify Answer' button.
Cancel
Vote Up 0 Vote Down

Cancel
0 leo hamel over 3 years ago in reply to rfcat_vk

for OWA

Source zone: WAN

Source network: Any

Destination zones: LAN

Destination networks: Port X (the public port assigned to the exchange)

Services: HTTPS

for SMTP (auto added when MTA Created)

Source zone: Any

Source network: Any

Destination zones: Any

Destination networks: Any

Services: SMTP,SMTPS

(this rule is connected to NAT rule) the NAT setting is below:

NAT

Original source: Any

Original destination: Any

Original service: SMTP,SMTPS

Translated source (SNAT): MASQ

Translated destination (DNAT): Original

Translated service: (PAT)

Inbound interface: Any

Outbound interface: Any
Cancel
Vote Up 0 Vote Down

Cancel
0 rfcat_vk over 3 years ago in reply to leo hamel

Hi

there issue is more than likely your open smtp rule, change source to WAN, destination LAN.

Ian

XG115W - v19.5.1 mr-1 - Home

If a post solves your question please use the 'Verify Answer' button.
Cancel
Vote Up 0 Vote Down

Cancel
0 leo hamel over 3 years ago in reply to rfcat_vk

for the firewall rule no the nat you mean?
Cancel
Vote Up 0 Vote Down

Cancel
0 rfcat_vk over 3 years ago in reply to leo hamel

For the firewall rule. Your smtp rule is an open relay.

XG115W - v19.5.1 mr-1 - Home

If a post solves your question please use the 'Verify Answer' button.
Cancel
Vote Up 0 Vote Down

Cancel
0 leo hamel over 3 years ago in reply to rfcat_vk

what about source network and destination network?

i tried to set the source network to the wan port specified for exchange server and destination for the exchange local host but i didnt get incoming emails after
Cancel
Vote Up 0 Vote Down

Cancel
0 rfcat_vk over 3 years ago in reply to leo hamel

Just change the zones at this stage.

XG115W - v19.5.1 mr-1 - Home

If a post solves your question please use the 'Verify Answer' button.
Cancel
Vote Up 0 Vote Down

Cancel
0 leo hamel over 3 years ago in reply to rfcat_vk

thanks
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 leo hamel over 3 years ago in reply to rfcat_vk

thanks
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data

blocking countries from trying to relay our exchange server, same time keeping them from email us

Submitted a Tech Support Case lately from the Support Portal?