Lock down Port 25

O

ozgreg

New member
Joined
Dec 18, 2005
Messages
3
G'Day All,

I have been using Jeff's excellent spamblocker script for a while now (works great) and my VPS host has also decided to run a trial of mailfoundry which is also working great however spammers (we got to love those spammers) can still bypass mailfoundry by directly mailing the VPS mail MX server so what I want to do is to split EXIM into two ports..

A) Port 25 only allow connections from localhost and mailfoundry mail filter

B) SMTP port 587 allows SMTP posts from authenticated users only

Now I can do part B thanks to Jeff's spamblocker script but I am not 100% sure how to get Part A working so it will only accept certain IP addresses..

Can anyone help?
 
You'll need to limit port 25 to only accept email from localhost (127.0.0.1) and from the single IP# from your VPS host.

You can do that either with a configuration option in exim.conf or in your firewall.

I haven't written the code to do it in exim.conf; it would take me about an hour to write and test it based on the code I've used to accept email on port 587.

Or you can do it yourself.

Or block all incoming port 25 traffic in your firewall, and then set an exception to allow port 25 traffic from a specific IP#.

Jeff
 
I haven't written the code to do it in exim.conf; it would take me about an hour to write and test it based on the code I've used to accept email on port 587.

Or you can do it yourself.

Or block all incoming port 25 traffic in your firewall, and then set an exception to allow port 25 traffic from a specific IP#.

Jeff
Click to expand...

Jeff,

Do you have the time to write this code? I am already blocking 25 in APF but ideally would like it in exim.conf that way it I know everything mail related is all in the one file (exim.conf)

Thanks Heaps
Ozgreg
 
I'm not sure what you're asking.

We always make time for commercial projects; someone here can be assigned to it.

That said, I couldn't possibly assign copyright to you since we plan on offering this kind of functionality in MailBlocker Pro.

Let me know offlist if you're interested in our commercial services.

Perhaps someone else with exim.conf experience could write it for you.

Any volunteers?

Jeff
 
Perhaps someone else with exim.conf experience could write it for you.

Any volunteers?

Jeff
Click to expand...

That would be nice as I do not have coding experience with the exim acl to be able to code this and considering how critical exim.conf it is not something I would just go out and throw in some code..
 
You must log in or register to reply here.
Back
Top