Table of Contents
Advertisement
7.1.1.2 SMTP Proxy
SMTP proxy
SMTP Proxy (smtp_service)
Click the
and
On
Proxy port
Proxy Port (svcport)
Specifies the port number used by the proxy service. The standard port number is 25.
Usually, you need to specify only the port number .To specify the port number, IP address, and
interface name all together, use the following format:
Syntax: [A.A.A.A%EEE:PPP|A.A.A.A:PPP|%EEE:PPP|PPP]
(PPP: Port number, A.A.A.A: Address, EEE: Interface)
Examples: 9025, 1.2.3.4:9025, %eth0:9025, 1.2.3.4%eth0:9025
■
You can specify only one inbound port numbe . To listen for connections on more
than one port, use the REDIRECT setting in the iptables function of Linux.
For example, to listen for connections on both the standard SMTP port (25) and
the submission port (587), set 25 as the inbound port number and use iptables to
redirect port 587 to port 25. In this case, use the following command to setup
iptables:
After specifying the setting, save the iptables configuration:
Because SSL communications for protocols such as SMTPs (TCP/port number
■
465) are encrypted, communications cannot be received directly regardless of
whether iptables redirection is enabled or not. If necessary, install F-Secure
Internet Gatekeeper for Linux so that communications are first decrypted by an
SSL proxy, SSL accelerator, or similar. After this, the communications pass
through Internet Gateway.
Available general-purpose SSL proxies include stunnel and stone.
- stunnel
- stone
Virus scanning
Do Virus Check (virus_check)
Enables or disables virus scanning.
We recommend that you enable this setting.
When you enable both virus and spam scanning, the virus scan result is handled first.
Global settings
Global Settings
These settings apply to all connections not specified in the LAN settings.
Virus e-mails may use spoofed (fake) sender and recipient addresses. The recommended
setting for incoming e-mail is to delete or notify the recipient, and for outgoing mail, to delete or
block sending.
Parent server
Parent Server (parent_server_host / parent_server_port)
Specifies the host name and port number of the destination SMTP server.
buttons to start or stop the SMTP proxy service.
Off
# iptables –t nat –A PREROUTING –p tcp –dport 587 –j REDIRECT –to-port 25
# /etc/init.d/iptables save
http://www.stunnel.org/
http://www.atmarkit.co.jp/fsecurity/rensai/securitytips/018stunnnel.html
http://www.gcd.org/sengoku/stone/Welcome.ja.html
http://www.gcd.org/sengoku/stone/
F-Secure Internet Gatekeeper for Linux/Administrator's Guide
35
Advertisement
Table of Contents
Related Manuals for F-SECURE INTERNET GATEKEEPER FOR LINUX 4.01
Related Products for F-SECURE INTERNET GATEKEEPER FOR LINUX 4.01
- F-SECURE LINUX SECURITY
- F-SECURE ANTI-VIRUS - FOR MICROSOFT EXCHANGE
- F-SECURE ANTI-VIRUS FOR MICROSOFT EXCHANGE 6.62 -
- F-SECURE ANTI-VIRUS FOR MICROSOFT EXCHANGE 7.10 -
- F-SECURE ANTI-VIRUS FOR MICROSOFT EXCHANGE 8.00 -
- F-SECURE ANTI-VIRUS FOR MICROSOFT EXCHANGE 9.00
- F-SECURE ANTI-VIRUS FOR MIMESWEEPER -
- F-SECURE Anti-Virus for Windows Servers
- F-SECURE ANTI-VIRUS FOR WINDOWS SERVERS 9.00
- F-SECURE ANTI-VIRUS LINUX CLIENT SECURITY -
- F-SECURE CLIENT SECURITY 7.00
- F-SECURE CLIENT SECURITY 9.00 - QUICK
- F-SECURE CLIENT SECURITY 9.01 - S
- F-SECURE Internet Gatekeeper
- F-SECURE INTERNET GATEKEEPER WINDOWS 2000-2003 SERVER 6.61 -
- F-SECURE LINUX SECURITY 7.02
Need help?
Do you have a question about the INTERNET GATEKEEPER FOR LINUX 4.01 and is the answer not in the manual?
Questions and answers