New? behavior og rbl's
jonas at vrt.dk
Fri Sep 23 11:50:10 IST 2011
> Which translated means:
> - put your MTAs on dedicated IP/s and do not share with gateway.
> - setup log watching/alerts
> - If you're corporate/Exchange don't allow OWA without being VPN'd or at least
> use a non standard port.
> - block port 25 outbound for all behind the gateway which is not an MTA (your
> MTA is on dedicated IP)
> - use outbound rating to minimize possible blasts.
All sound advice for enterprises, however the part about putting your MTA on a dedicated IP is just nonsense. Here in Denmark 90% of companies have less than 10 employees, so most just run on business adsl lines or similar smaller connections, where there is only 1 WAN ip.
Who suddenly decided you need multiple WAN ip's to host a mail gateway?
In my humble opinion its taking it way too far when you combine things that has nothing to do with mail with a mail blocking filter...
Med venlig hilsen / Best regards
Jonas Akrouh Larsen
Laplandsgade 4, 2. sal
2300 København S
Office: 7020 0979
Direct: 3336 9974
Mobile: 5120 1096
Fax: 7020 0978
More information about the MailScanner