Geekah
asked on
blacklisted - help pls
We are blacklisted now and are unable to send out emails.
Our exchange had a relay setup to allow anything to 255.255.255.255 we removed that and we are still getting some machines trying to send out to that broadcast using Port 17500
we r running AV on those machines, please advice what else we could do to prevent this
we have the watch gaurd 330
Our exchange had a relay setup to allow anything to 255.255.255.255 we removed that and we are still getting some machines trying to send out to that broadcast using Port 17500
we r running AV on those machines, please advice what else we could do to prevent this
we have the watch gaurd 330
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Try running WireShark to see if you can find the affected PC(s). Take those off the network and scan them.
ASKER
I installed wireshark but would that mean I have to open flow of mail out so I can capture?
You should be able to see that port. Run wireshark and then filter out that port. You should see that traffic coming from only certain IP addresses.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
We ended up using postini to get out and it worked
thx
thx
ASKER
i need to stop it first