Directory Attack -Smtp Whitelist Needed !!

Discussion in 'Tomato Firmware' started by homeuser, Nov 27, 2009.

  1. homeuser

    homeuser Addicted to LI Member

    can somebody please help me ?
    i have a directory attack running against my mailserver
    and i want to turn delivery reports back on but i cant
    because the machine is already busy requesting the AD and its getting worse when i allow reports and allow sending ndr .

    i need a way to whitelist my real e-mail addresses on the router without asking the internal ad?

    best regards
  2. ntest7

    ntest7 Network Guru Member

    You need an SMTP proxy to do that on the router. Tomato does not provide such a service, nor does any other router firmware I know of.

    Dictionary attacks are not terribly uncommon, most MTA software has settings to deal with it gracefully. You might check with a support forum for your email software; maybe there are some settings you can change in it to help it weather the storm.
  3. homeuser

    homeuser Addicted to LI Member

    Thank you for reply,
    do you know a free small smtp proxi with wihtelisting?
    I know only Astaro ASG and NoSpamProxy both not free for mini business.
    Do i really need to buy a extra appliance i hoped there is a small clean solution?
    I am on windows and sadly dont know much aboute the linux solutions.
    The security feature i have on windows works while its checking the queries against
    the active directory but i dont want to use it for the outside queries.
    Also i turned off sending ndr´s.
    If i want more i have to buy the isa server vom microsoft.

    I wish i had a small listener on 25 that drops the queries not on the small whitelist.
    but i can do it only by ip ,subnet or senders mail address not by intern mail address wtf :)

    best regards dd
  4. ntest7

    ntest7 Network Guru Member

    Sorry, I don't use windows for MTA. My solution would be to put a FreeBSD or Debian box running postfix in front of Windows.

    I suggest you check on a support channel for the mail software you are using. Maybe someone there has a suggestion.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice