asked on
How to find out which desktop is being used to send spam
We are being blacklisted and our mail is getting rejected. Changing our outgoing ip gets the mail flowing again but after a while we get blacklisted again. Spam must be going out fron our location to cause this action. I installed wireshark to monitor the network traffic and capture packets. Is this the right software to use and what do I look for in the captured file?
AntiSpamEmail ProtocolsAnti-Virus Apps
Last Comment
Press2Esc
ASKER
I have a Netopia R9120. Looked at the statistics and logs but there is nothing of value there. How can I create a rule to only allow outbound smtp from a prticular ip?
not sure how to do it from the netopia but basically create a rule that says only allow smtp traffic (port 25) from 192.168.1.X to *
X = the internal email server
* is the wildcard to allow mail to get sent out.
X = the internal email server
* is the wildcard to allow mail to get sent out.
ASKER
Do you mean creating a rule for outbound smtp in the router?
10-4
ASKER
I have already done that. What I really need is to find a way to monitor port 25 to see which desktop is sending the spam.
ASKER CERTIFIED SOLUTION
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
SOLUTION
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
Another way to help would be to create a rule that only allows smtp outbound from IP XXX where XXX is your mail server