The external IP address for a client of ours has been added to several email RBLs. The client runs a mailserver for sending out legitimate email->SMS traffic and the RBLs are getting them blocked. I suspect that one or more PCs on the network is infected and sending out mail traffic of it's own.
Is there a way for me to log outgoing SMTP traffic on a per-IP basis using their Sonicwall TZ200? It's running "SonicOS Enhanced 184.108.40.206-52o"