Solved

Hosted POP3/SMTP Email and Local Spam Filter

Posted on 2008-10-20
7
340 Views
Last Modified: 2013-12-14
Our business currently has our email hosted with our dns provider and locally we have a watchguard firebox with all of the software subscriptions. The firebox has a great spam filter and quarantine server, however the smpt filtering (quarantine feature) only works if you have a smtp server behind the firebox.

Is there anyway to have our dns provider change our mx record to point to us, have the firebox filter the email and then push the email back to the isp so that clients can download the email via pop3 with their outlook clients? Our dns provider is willing to change our mx record but we are stuck on how or even if it is possible to "scrub" the email and then send it back to the provider.

Our goal is to not have to get a mail server onsite as it would create another server that needs to be maintained. Although, if anyone has any other suggestions that would be great as well.
0
Comment
Question by:ibgadmin
  • 4
  • 3
7 Comments
 
LVL 32

Accepted Solution

by:
dpk_wal earned 500 total points
ID: 22764340
>> Is there anyway to have our dns provider change our mx record to point to us, have the firebox filter the email and then push the email back to the isp so that clients can download the email via pop3 with their outlook clients?

I do not think this is possible; all the incoming traffic would come in and WG would filter the traffic; but it needs to send it to an internal server for further processing; there is no way we can the firebox hair pin the traffic out of external interface. If an option; you configure a mail relay server behind firebox.
Let firebox send all traffic to it first and then have the server relay all the traffic back to your ISP server; now the clients would download their emails using POP3. If you wish we can again inspect the incoming traffic using POP3 proxy at this time.

Please let know if I have overlooked anything.

Thank you.
0
 

Author Comment

by:ibgadmin
ID: 22768872
I will give it a shot and post my results back to this thread.
0
 

Author Comment

by:ibgadmin
ID: 22770440
Quick question. Is there any recomendation that you would make to secure this relay? Or is it secure enough as it is?
0
Find Ransomware Secrets With All-Source Analysis

Ransomware has become a major concern for organizations; its prevalence has grown due to past successes achieved by threat actors. While each ransomware variant is different, we’ve seen some common tactics and trends used among the authors of the malware.

 
LVL 32

Expert Comment

by:dpk_wal
ID: 22770496
for increased security may be you can use HTTPS and certificates; but am not an expert on those things and would not be the best person to suggest something.

The connection is outbound so your network would not be affected much, we would inspect all incoming SMTP packets; and also incoming POP packets.

Thank you.
0
 

Author Comment

by:ibgadmin
ID: 22770523
Ok, I just wanted to make sure that people could not use me as a spammer server.. So this should not be an issue then?
0
 
LVL 32

Expert Comment

by:dpk_wal
ID: 22770551
You can configure a service where only the mail server can send packets out to the server using your server using SMTP as:
Enabled and allowed; from server-interna;-ip; to your-isp-server-ip

Thank you.
0
 

Author Closing Comment

by:ibgadmin
ID: 31508019
Thanks, that did the trick. I appreciate your help.
0

Featured Post

Better Security Awareness With Threat Intelligence

See how one of the leading financial services organizations uses Recorded Future as part of a holistic threat intelligence program to promote security awareness and proactively and efficiently identify threats.

Join & Write a Comment

Suggested Solutions

    Over the past few years, small business and home owners have become so dependent on internet that a need for redundancy has arisen.    What happens when your small business or home / home office loses its internet connection?  The results c…
There was an incident about the POP3 issue for the double read receipts and delivery receipts in Exchange 2013.  There was huge research been done and found solution for the duplicate mails. Especially when the user gets  duplicate mails.
It is a freely distributed piece of software for such tasks as photo retouching, image composition and image authoring. It works on many operating systems, in many languages.
This video explains how to create simple products associated to Magento configurable product and offers fast way of their generation with Store Manager for Magento tool.

708 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

17 Experts available now in Live!

Get 1:1 Help Now