Entering a range of IP's into SMTP - Can it be done?, I have a list of over 600 IP's, I'd like to enter 208.65.144.0 to 208.65.151.255 instead of typing in each address manually.
Hello Experts,
I just signed up for MX Logic, They want me to lock down the SMTP so that only IP's 208.65.144.0 to 208.65.151.255 & 208.81.64.0 to 208.81.67.255 can be accepted.
How can I enter a range into the SMTP Connection?
I found this answer from Sembee, but the author only needed one IP: https://www.experts-exchange.com/questions/21676289/Accepting-e-mail-only-from-a-specified-IP-address-range.html?
I do have a list of all their IP's but there must be 1000 IP's in that list, I can't type that fast.
Thanks,
Lasareath
SMTP-Range.jpg
I just signed up for MX Logic, They want me to lock down the SMTP so that only IP's 208.65.144.0 to 208.65.151.255 & 208.81.64.0 to 208.81.67.255 can be accepted.
How can I enter a range into the SMTP Connection?
I found this answer from Sembee, but the author only needed one IP: https://www.experts-exchange.com/questions/21676289/Accepting-e-mail-only-from-a-specified-IP-address-range.html?
I do have a list of all their IP's but there must be 1000 IP's in that list, I can't type that fast.
Thanks,
Lasareath
SMTP-Range.jpg
valheru_m
Dos it have to be done on the Exchange server or can it be done at the firewall level? Many firewalls have provisions to only allow certain IP ranges to access a particular port. If you lock it down at the firewall level you dont need to make the changes on the mail server itself.
ASKER
That's my problem, they have a cheapo $65 LinkSys firewall
ahhh, yeah that bites. Wish I had better news for you.. but I think it's time to set aside an afternoon for typing. :(
ASKER
efff that, they can shell out some money for a new router!
Are you linux savvy at all? If you are, there is a 3rd party firmware called OpenWRT that you can install on your linksys router. It's all command line and config files, so if you're not comfortable wth that then it's defintiely not for you, bt I've successfully used shorewall (linux software firewall) on the linksys router before and that would give you the flexibility to enter rules as you see fit.
ASKER
Not at all :(, I used some linux 20 years ago LOL
ASKER
I decided to try the following:
The range they want me to grant is
208.65.144.0 to 208.65.151.255
208.81.64.0 to 208.81.67.255
So, I typed in 208.65.0.0 / 255.255.0.0 & 208.81.0.0 / 255.255.0.0 (Are these Subnet Masks correct?)
I guess this lets in the whole class B of 208.65 & 208.81 ?
I guess I can narrow it down even further to just allow the class C's ?
So if there are any spammers on teh 208 network then they will still be able to send to the email server directly.
What you guys think?
Lasareath
I-Granted--this-Range.jpg
The range they want me to grant is
208.65.144.0 to 208.65.151.255
208.81.64.0 to 208.81.67.255
So, I typed in 208.65.0.0 / 255.255.0.0 & 208.81.0.0 / 255.255.0.0 (Are these Subnet Masks correct?)
I guess this lets in the whole class B of 208.65 & 208.81 ?
I guess I can narrow it down even further to just allow the class C's ?
So if there are any spammers on teh 208 network then they will still be able to send to the email server directly.
What you guys think?
Lasareath
I-Granted--this-Range.jpg
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Yes... Thats' what those two address ranges I gave you will cover if you use the subnet masks I provided.
ASKER
Thanks valheru!
I entered them and I will wait a little while to make sure that it is OK and then you will be awarded.
Lasareath
I entered them and I will wait a little while to make sure that it is OK and then you will be awarded.
Lasareath
ASKER
If you have MX Logic and you want to lock down your SMTP then this question is for you.
This has worked 100% for me!!!
Simply go to ESM, Servers, <your server>, Protocols, SMTP. Right click on the "Default SMTP Virtual Server" and choose Properties.
Click on the "Access" tab and then "Connections". Change the configuration from "All except the list below" to "Only the list below".
Click the Add button, Click "Group of Computers", Enter 208.65.144.0 for the Subnet Address then 255.255.248.0 for the Subnet Mask, click OK
Then Click the Add button again, Click "Group of Computers", Enter 208.81.64.0 then 255.255.252.0, click OK all the way out.
You are done, Your server will only accept emails from MX Logic
Lasareath
This has worked 100% for me!!!
Simply go to ESM, Servers, <your server>, Protocols, SMTP. Right click on the "Default SMTP Virtual Server" and choose Properties.
Click on the "Access" tab and then "Connections". Change the configuration from "All except the list below" to "Only the list below".
Click the Add button, Click "Group of Computers", Enter 208.65.144.0 for the Subnet Address then 255.255.248.0 for the Subnet Mask, click OK
Then Click the Add button again, Click "Group of Computers", Enter 208.81.64.0 then 255.255.252.0, click OK all the way out.
You are done, Your server will only accept emails from MX Logic
Lasareath
ASKER
Wow I needed this again and I totally forgot what I did. Thank God this was still here!!!
Works Great!
Lasareath
Works Great!
Lasareath