Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 7 replies
  • Subscribers 2 subscribers
  • Views 1452 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

POP3S inbound - bind to certain interface possible?

SmallAdmin
Hello,
there's a question where I'm unsure if this traffic rule is possible at all at UTM level. Please excuse if this is stupid question:

If I want to bind for example POP3S inbound to a certain Interface (HDSL rather than automatic load balancing between ADSL and HDSL) what's the correct approach to achieve this?
My guess is that multipath can't help here because its incoming traffic. Such a rule would certainly work for SMTP ougoing.

But how do I get that client to use only the HDSL interface for POP3S incoming traffic?


This thread was automatically locked due to age.
  • 0
    Simplest method is by using DNS FQDN that points to the IP-address of that interface.

    Managing several Sophos UTMs and Sophos XGs both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

    Sometimes I post some useful tips on my blog, see blog.pijnappels.eu/category/sophos/ for Sophos related posts.

  • 0 in reply to apijnappels
    Simplest method is by using DNS FQDN that points to the IP-address of that interface.


    And this would work also without using the pop3 scanning on the UTM?
  • 0 in reply to SmallAdmin
    And this would work also without using the pop3 scanning on the UTM?


    I'm not sure what you mean with this question, but I expect you'd also need to create firewall and DNAT rules.

    Managing several Sophos UTMs and Sophos XGs both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

    Sometimes I post some useful tips on my blog, see blog.pijnappels.eu/category/sophos/ for Sophos related posts.

  • 0 in reply to apijnappels
    I'm not sure what you mean with this question, but I expect you'd also need to create firewall and DNAT rules.


    Actually, I thought to achieve this without having to configure a full set of passthrough.
    Thanks for your help, I'll report back if it working! [8-)]
  • 0
    I'm confused.  There's no such thing as POP3 traffic that arrives without having been requested.  Binding outbound requests to an interface with a Multipath Rule should work - have you tried that?

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0
    Thanks Bob, 
    I already had that Multipath rule for POP3s, but I've tried to make an "inbound" rule:
    Internet -> POP3s -> WANx(HDSL) 

    Obviously that was, well, not so smart. Creating a plain simple Multipath rule would have been the right choice? 

    *facepalm*
  • 0
    Thanks Bob,
    that works perfectly.
    Solved!
Cookie Information Banner