Blocked Site Exceptions not working

My Firebox M270 is repeatedly blocking our corporate email server (Rackspace). I have added the server's FQDN to the Blocked Site Exceptions page, but it is still getting blocked. I find the email server's ip listed in Server Manager with "Unhandled External Packet - 00 Policy" each time. How do I stop my email provider from getting blocked?

Dunc

Comments

  • james.carsonjames.carson Moderator, WatchGuard Representative

    Hi @Dunc

    Unhandled External Packet means that there's not a rule to handle the traffic, so it was dropped. Is there an inbound SMTP rule to handle this traffic?

    Items blocked due to blocked sites will show (blocked sites) in the log line.

    -James Carson
    WatchGuard Customer Support

  • There are the 4 predefined SMTP proxies, and there is a policy forwarding SMTP traffic to our local mail server. This is the way it has been since rolling out the box a couple of years ago. The blocking is a relatively new event - last two months probably.

  • edited February 23

    What is the source & dest ports on the unhandled deny ?
    For incoming SMTP , the dest port should be TCP port 25, and the external To: IP addr should be one in one of your incoming SMTP policies.

Sign In to comment.