English Forums > Intrusion Detection and Prevention
( Solved )Block USA
Julien:
Hi Guys,
We are willing to block USA on the IDS.
Wenever we Block USA on the IDS the emails are originally from Office 365 and Outlook/Gmail stops arriving.
is there is a way to get those working with blocking USA ?
bartjsmit:
Hi Julien,
Point your MX record to a mail filter in the DMZ and don't IDS that traffic. Something like https://efa-project.org/
Bart...
mimugmail:
Block via GeoIP Alias. You can allow SMTP globally and then deny USA
Julien:
--- Quote from: mimugmail on April 22, 2018, 11:03:48 am ---Block via GeoIP Alias. You can allow SMTP globally and then deny USA
--- End quote ---
the IP of the spam filter is a virtual IP which is pointing to the spam filter internally. so when the IDS is active it does apply on the both interfaces.
i would love to know how to configure this mimugmail.
do you have somewhere a tutorial or something ?
Julien:
--- Quote from: bartjsmit on April 22, 2018, 09:36:18 am ---Hi Julien,
Point your MX record to a mail filter in the DMZ and don't IDS that traffic. Something like https://efa-project.org/
Bart...
--- End quote ---
Hi Bart,
We do have two WANS.
WAN1 . using for internet / VPN / OWA
WAN2. using for the mx records and pointing to the spam filter
WAN1 is a physical NIC and WAN2 is Virtual IP configured.
whenever we enable the IDS we include both WAN1 and LAN but somehow WAN2 is reacting on the block.
is this the right way of doing things ?
Navigation
[0] Message Index
[#] Next page
Go to full version