Options

HTTP Proxy Stop SMTP Traffic

CTX1300CTX1300
in Firebox - Proxies

I'm trying to create an HTTP policy proxy that essentially stops SMPT traffic on port 80. Is this realistic?

Comments

  • james.carsonjames.carson Moderator, WatchGuard Representative

    STMP traffic will usually be on port25/tcp. If there is an http proxy in place and SMTP were trying to traverse port 80 -and- matched that firewall rule, it should be dropped.

    -James Carson
    WatchGuard Customer Support

  • Bruce_BriggsBruce_Briggs

    Are you asking about blocking web mail, such as access to Gmail?

  • CTX1300CTX1300

    Thanks perfect.

    I have a block of 5 static IPs - (1.2.3.4 - 1.2.3.8) SMTP email is going out on the Ip ending in 4. How do I create a rule that will direct email to go out using the IP ending in 5 instead of 4?

  • Bruce_BriggsBruce_Briggs
    edited February 2022

    Use Dynamic NAT on your outgoing SMTP policy.
    You can specify the external IP addr to be used there.
    That option is on the Advanced tab of a policy in Policy manager

  • CTX1300CTX1300

    Awesome!!

Sign In to comment.