Koozali.org: home of the SME Server
Obsolete Releases => SME Server 9.x => Topic started by: jameswilson on July 03, 2017, 05:53:31 PM
-
Hi all
I've searched for this and found a way to create a template fragment for individual ip addresses but not for all local lan
The problem i have we have an application which i cant add auth details for so id like to allow all local ip addresses to be able to send email without auth
Is there a way?
Thanks
-
https://forums.contribs.org/index.php/topic,51545.msg262187.html#msg262187
-
doh
Thanks
So if I run the first command that will allow any ip on the local lan send email on port 25 without auth?
-
You don't want it, really
Just enable the clients you need
-
jameswilson
If you open your whole LAN to non auth access to smtp server, then viruses or hackers can more easily send spam from infected or vulnerable workstations, which is very undesirable.
If your application only accesses the smtp server from one IP, you could use the third command to control Auth by IP (ie based on the local LAN IP for each connected device).
You would firstly configure (in console) the DHCP auto allocation range to be very small/limited.
Then in Hostnames and Addreses panel you enter MAC address for each connected local device (workstation etc) & the specific LAN IP to be force allocated by DHCP to that workstation (so that device always has the same IP issued by DHCP).
Then use the command mentioned to only allow non auth access for the device IP your errant application is using (or maybe for only for those workststion IPs that use that application ?).
-
Your right i will just enable the few pcs that run the software rather than all
Thanks
James