However the Global_Deny list appears to be blocking incoming SMTP traffic as well.
Is it possible to override the Global_Deny setting on a per user basis and/or for SMTP traffic?
Thanks in advance...
Global_Deny can be overridden -- Easy Question?
Global_Deny can be overridden -- Easy Question?
We are using a CSF Global_Deny list with IPs that are blocked. This works great at filtering BOTs and other HTTP pests.
However the Global_Deny list appears to be blocking incoming SMTP traffic as well.
Is it possible to override the Global_Deny setting on a per user basis and/or for SMTP traffic?
Thanks in advance...
However the Global_Deny list appears to be blocking incoming SMTP traffic as well.
Is it possible to override the Global_Deny setting on a per user basis and/or for SMTP traffic?
Thanks in advance...
-
ForumAdmin
- Moderator
- Posts: 1524
- Joined: 01 Oct 2008, 09:24
Re: Global_Deny can be overridden -- Easy Question?
No, you cannot whitelist incoming connections in iptables based on a local user account. You can whitelist based on incoming IP address and to a specific port using the advanced port filtering (see readme.txt).
Re: Global_Deny can be overridden -- Easy Question?
Thank you for the confirmation.
Very helpful and much appreciated.
I guess that our only alternative is to the move our SMTP mail to another server.
Anybody else have a separate SMTP server for incoming mail (because of strict IP filtering needed for HTTP traffic)?
Very helpful and much appreciated.
I guess that our only alternative is to the move our SMTP mail to another server.
Anybody else have a separate SMTP server for incoming mail (because of strict IP filtering needed for HTTP traffic)?