Welcome to the MacNN Forums.

snerdini · Dec 2, 2003, 12:36 PM

Let me give you a little background on our situation:

We are a email hosting provider, and have a Mac-based mail server with a spam appliance in front of it filtering all incoming mail. The problem is that we can't block off port 25 in our firewall, since we need to allow our clients to send mail out (clients are outside our firewall). Since we can't block that port, it is allowing spam to be sent directly to our mail server, totally bypassing the spam appliance.

The MTA software we currently use does not have the capability to limit incoming mail from one server/IP - does anyone know if Postfix on Panther Server has this capability? Basically, we want to allow incoming mail only from the spam appliance's IP, while allowing anyone with proper credentials to send mail out.

Is this possible?

chaldean oracle · Dec 2, 2003, 04:28 PM

Can't you just do that with your firewall?
Allow incoming on port 25 only from your spamblocker's IP.

CatOne · Dec 2, 2003, 04:54 PM

Originally posted by chaldean oracle:
Can't you just do that with your firewall?
Allow incoming on port 25 only from your spamblocker's IP.

?

How would a firewall block stuff on port 25 from all but one IP?

Heh.

chaldean oracle · Dec 3, 2003, 02:41 AM

sudo ipfw add deny tcp from not 1.1.1.1 smtp to any in

where 1.1.1.1 is the spamcatcher address.

Heh yourself.