Locking down SMTP server
From: Dave Mulvey (mr_snuffolupagus@hotmail.com)Date: 01/31/02
- Previous message: George: "NT or Windows"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: mr_snuffolupagus@hotmail.com (Dave Mulvey) Date: 31 Jan 2002 04:57:19 -0800
My first posting to this group, so please be gentle :-)
I'll be installing a publicly-accessable mail server for my company,
which will relay mail on to our internal server. I've already sorted
out its anti-relay protection, and I'm now just concentrating on the
security of the system it's being installed on.
Current situation is it's installed on an NT 4.0 box (behind a
firewall), with two network adapters - one with a public IP address
and one with a private IP address. Incoming mail arrives direct from
other mail servers via DNS MX records, and outgoing mail is sent
direct via DNS MX lookups. All mail is internally relayed to and from
the internal mail server via the private network adapter (this new
relay server basically just checks mail for viri before passing them
on)
What I need to know is, what services do I need running on the NT box
to allow it to run purely as an SMTP server? (other than the SMTP
server itself, obviously!)
Also, I've looked at locking down the ports in NT's
TCP/IP-Advanced-Enable Security settings page. What TCP/UDP/Protocols
do I need enabled for...
a) the publically-facing adapter, which will send and receive SMTP
mail and issue DNS queries for sending out mail, and...
b) the private adapter, which will just send and receive SMTP mail to
and from the internal mail server?
Any advice would be greatly appreciated!
- Previous message: George: "NT or Windows"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
