Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 5 replies
  • Subscribers 1 subscriber
  • Views 1359 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SMTP Proxy/relay on ASG

andy.l
I´m working on an ASG installation where we have a need for enabling SMTP communication outwards and inwards to our LAN. Ideally we should use the SMTP proxy on the ASG but one of my friends is a bit concerned about this solution. Normally we place a smtp relay server in the DMZ that all inbound and outbound traffic is relayd through, and this relay is the only server that has contact with the internal smtp and exchange server.
Our concern is that if we have the smtp directly on the ASG we will be vulnerable if someone say are flooding our smtp server with false connections. This could potentially take the entire firewall down. 
Any thoughts abou this?


This thread was automatically locked due to age.
Parents
  • 0
    Hi, Andy - Welcome!

    If you're concerned about the total number of bits arriving, then it makes no difference if the "relay" is inside the Astaro or behind it.  If you're concernd about overloading the processing power of the Astaro with the number of SMTP connections, a look at the 'Advanced settings' section near the bottom of the 'Advanced' tab should allay the fears of your friend.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Reply
  • 0
    Hi, Andy - Welcome!

    If you're concerned about the total number of bits arriving, then it makes no difference if the "relay" is inside the Astaro or behind it.  If you're concernd about overloading the processing power of the Astaro with the number of SMTP connections, a look at the 'Advanced settings' section near the bottom of the 'Advanced' tab should allay the fears of your friend.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Children
No Data
Cookie Information Banner