Just moved to Astaro and I need to get SPAM detection running a bit stricter than the default settings. A lot of SPAM is getting through and not even being tagged.
yes, in the scheme of things in ASG, the dnat rules happpen before the proxies, so if you are doing (the usually correct) thing of making a forwarding rule, this will jump you over a configured feature like a mail proxy.
The POP3 proxy is transparent, as is designed for clients who are checking pop3 messages via a client on the lan and going out to a server on the internet. If you have incoming visitors popping your to local server then the mail has already arrived at the server and is already filtered, hence we don't filter it leaving the server via pop3 to a client outside asg.
The logic for that smtp situation is you have already defined in the smtp proxy the domain involved and where the mail server is as the target, hence you dont need a DNAT as that would be redundant.
yes, in the scheme of things in ASG, the dnat rules happpen before the proxies, so if you are doing (the usually correct) thing of making a forwarding rule, this will jump you over a configured feature like a mail proxy.
The POP3 proxy is transparent, as is designed for clients who are checking pop3 messages via a client on the lan and going out to a server on the internet. If you have incoming visitors popping your to local server then the mail has already arrived at the server and is already filtered, hence we don't filter it leaving the server via pop3 to a client outside asg.
The logic for that smtp situation is you have already defined in the smtp proxy the domain involved and where the mail server is as the target, hence you dont need a DNAT as that would be redundant.
