Mailing List ecs-isp@2rosenthals.com Archived Message #552

Fra: "Massimo S." <ecs-isp@2rosenthals.com> Full Headers
Undecoded message
Emne: Re: [eCS-ISP] stunnel 5.58 help
Dato: Mon, 18 Sep 2023 14:07:43 +0200
Til: eCS ISP Mailing List <ecs-isp@2rosenthals.com>



Il 14/09/2023 17:11, Steven Levine ha scritto:
In <list-7892075@2rosenthals.com>, on 09/14/23
    at 11:38 AM, "Massimo S." <ecs-isp@2rosenthals.com> said:

Hi Massimo,

If i use IF, the 587 will still be visibile from my internal LAN?

It depends on what you mean by visible.  If you block incoming 587 traffic
from the WAN with Injoy, that traffic will not reach the LAN.  However,
clients running on the LAN can generate traffic and 587 and this traffic
will be visible to anything listening to 587.

hi,

ok, good

At the moment 587 is also used with STUNNEL for SMTPS (submission), but
it's still visible from my LAN.

This depends on your stunnel config which you have not shown.  What are
your stunnel accept and connect settings for the smtps service?

Steven

smtps options:

accept the external (wan visible) port
connect the 587

generic options:

socket = r:TCP_NODELAY=1
options = DONT_INSERT_EMPTY_FRAGMENTS


massimo

Abboner: Feed, Digest, Index.
Stopp abbonement
E-post til ListMaster