Messaging Gateway

Hi all,

 

I have a question related to "Inbound Non-Local Mail Delivery" setting in SBG.

 

Under the SBG admin web, Administration -> Configuration -> SMTP -> Mail Filtering, user set "Inbound mail filtering only" as it is in testing phase. However, they have a query on the settings "Inbound Non-Local Mail Delivery".

 

1. is it mean all email sent to non-local domain will route to the server by MX lookup or pre-define host?

2. is it a possible security issue if someone use their host as rely to send out spam?

3. why this option disappear if Mail Filtering setting set to "Inbound and outbound mail filtering"?

 

Thanks for your kind help and sorry for I am newbie on SBG.

This setting is for connections that have authenticated via SMTP and are authorised to relay mail through the web gateway. This does not present a security flaw since the sender has to authenticate. This is unless a user has had their credentials compromised. This setting goes away when you enable both outbound and inbound scanning because it will use the outbound setting when that is active. You can specify a host to route to in case you have somewhere else you want that traffic to go such as another scanner or smarthost.

The function of this settings is for Bounce messages.  It allows the Administrator the ability to define an upstream mail host (In some cases the firewall or an edge server).  It's intent is not to anable domains to relay external mail (connection to inbound NIC and deliver mail to the internet).

JDavis -Why isn't SBG 9 using the "Authentication Mail Settings" for this.  With Inbound only, where would one configure the inbound authentication?

It looks like John is correct. This is for bounce message and NDR delivery to senders whose message could not be delivered to the recipient.