Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
Solved

Securing smtp port?

Posted on 2010-11-08
7
556 Views
Last Modified: 2012-05-10
guys, a consultant did some work on our site and concluded that our smtp port was not secure. What does he mean? The port on the router is open fo port 25, so that mail can leave. How do I secure smtp?

We're using Exchange 2007.
thanks a lot
Yash
0
Comment
Question by:Yashy
7 Comments
 
LVL 20

Expert Comment

by:Lazarus
ID: 34088780
He may be meaning that all client computer on your network are able to also send mail via port 25. You would want to make sure that the only IP able to send email via SMTP is you email server. This will help with malware or Virus that might infect other machines and use client to send mail.
But you will neeed to ask him to verify what he meant.
0
 
LVL 8

Expert Comment

by:GundogTrainer
ID: 34088787
You may need to check if you are an open relay.
Yuo can control the IP addresses that are allowed to send mail through your server to ensure that any device on your network cant just send mail.
0
 
LVL 1

Author Comment

by:Yashy
ID: 34088818
Thanks for writing back. How can I check to ensure that our email server is the only one that can send via the smtp port?
0
Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

 
LVL 17

Accepted Solution

by:
Viral Rathod earned 250 total points
ID: 34088904
Please check the following utility from MX toolbox.com to check which port is open

http://www.mxtoolbox.com/PortScan.aspx

Letus know the results.
0
 
LVL 1

Author Comment

by:Yashy
ID: 34089003
        21   ftp    Success       140 ms
       25      smtp      Success      140 ms
       80      http      Success      140 ms
       443      https      Success      125 ms

This was for the router IP that we use to send out emails. How does that look? The above are all open ports. Everything else was closed.
0
 
LVL 20

Assisted Solution

by:Lazarus
Lazarus earned 250 total points
ID: 34089028
It's not quite as simple as which poerts are open from just the outside. You need to also check your router configuration to make sure that only teh IP address assigned to you Mail Server is able to send via port 25, otherwise any computer in you network is able to send MAIL as well.
0
 
LVL 1

Author Comment

by:Yashy
ID: 34089050
Can this be checked by changing to another router gateway and doing a telnet command?
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A procedure for exporting installed hotfix details of remote computers using powershell
How to resolve IMCEAEX NDRs in Exchange or Exchange Online related to invalid X500 addresses.
To efficiently enable the rotation of USB drives for backups, storage pools need to be created. This way no matter which USB drive is installed, the backups will successfully write without any administrative intervention. Multiple USB devices need t…
A short tutorial showing how to set up an email signature in Outlook on the Web (previously known as OWA). For free email signatures designs, visit https://www.mail-signatures.com/articles/signature-templates/?sts=6651 If you want to manage em…

860 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question