Mark Hynes
asked on
Pfsense - and other email Servers
I have pfsense 2.3.2 firewall , I know very little about it. I would like to accept incoming email from only one Host so I can lock down who I get outside email from. All help will be very much appreciated.
Do you mean you only want to be able to get emails from ONE organization, or for all emails to come through only one place? If the latter, it would make more sense to utilize an outside spam filtering service. Then you can expect messages to be delivered only through that service. However, that's more of an email system design issue, not a firewall issue.
When you create the port-forward rule for the mail server, a firewall rule will also be created to allow the traffic. Edit this rule to only allow the specific host.
ASKER
Craig,
Port forward rule has SMTP 25, 80, 443, port number. Also in the rule it has a place for me to put in a source network, is that where I put it in. ? And will that have any side effects to port 80 and 443 ?
Port forward rule has SMTP 25, 80, 443, port number. Also in the rule it has a place for me to put in a source network, is that where I put it in. ? And will that have any side effects to port 80 and 443 ?
Yes, that's where you'd be put network or IP you want to allow traffic from.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Craig,
If its ok with you, I would like to try this sometime this week and get back to you to let you know how its going and to assign points.
Mark H.
If its ok with you, I would like to try this sometime this week and get back to you to let you know how its going and to assign points.
Mark H.
ASKER
Graig,
Two different places I can put Sources Host in.
The Source IPs for Hosted Email Server go in Rules (WAN), or NAT (WAN/PORT FORWARD) ?
Mark H
Two different places I can put Sources Host in.
The Source IPs for Hosted Email Server go in Rules (WAN), or NAT (WAN/PORT FORWARD) ?
Mark H
ASKER
Graig,
We have OWA setup for offsite personnel, I believe that is why port 80 and 443 is in port forwarding.
Update:
This weekend I added the Host IP from Trend and I still would not get outside email. I'm sure its something I doing wrong in the Firewall. On exchange I have Anynononmus Selected for SMTP Inside the Exchange Server. I did recognize (in the Firewall) that Host IP setting source port was setup as (any) to destination (any) does the destination port (any) have to be set to SMTP ?
We have OWA setup for offsite personnel, I believe that is why port 80 and 443 is in port forwarding.
Update:
This weekend I added the Host IP from Trend and I still would not get outside email. I'm sure its something I doing wrong in the Firewall. On exchange I have Anynononmus Selected for SMTP Inside the Exchange Server. I did recognize (in the Firewall) that Host IP setting source port was setup as (any) to destination (any) does the destination port (any) have to be set to SMTP ?