Hello,
I create a new Any-object with ip 0.0.0.0 / 0 and bound it to the internal LAN-interface eth0.
When I use this object in the paketfilter, this object defines really ALL IP-addresses coming from all internal computers through eth0. A nice feature.
Now I use this object on
WebAdmin-> Mail Security-> SMTP -> Relaying-> Host-based relay
as allowed hosts/networks. E. g. if I change internal IP or subnets I must not change this configuration again. External relaying is denied because all external pakets come through eth1/ppp0, which is not included in my own Any-object which is bound only to eth0.
It just didn't work! :-( When I use this own defined Any-object as Host-based relay-setting, ASG accepts relaying from everyone, I am an open smtp-relay with this setting :-((( The information, to which interface the Any-object is bound, seems not to be evaluated from smtp-server.
If this is "by design", there must be a really complete documentation for the feature "bound to interface" on object definition (where does this work, where not)!
Regards,
Manuel Fischer
Guest User!
You are not Sophos Staff.