[fw-wiz] filter smtp port juniper M20
This is a multi-part message in MIME format.
--===============2130858662==
Content-Type: multipart/alternative;
boundary="----=_NextPart_000_0013_01C68BBB.7D8A2AF0"
This is a multi-part message in MIME format.
------=_NextPart_000_0013_01C68BBB.7D8A2AF0
Content-Type: text/plain;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
Hey all,
New to list but I hope I'm in the right place....
so I setup a filter on a Juniper M20 because I have an old folks home =
sending spam and they can't seem to figure out how to clean up their =
computers. Now port 25 has been blocked both in and out since June 7 but =
I'm still receiving complaints timestamped after the period I put on the =
filter. Is there any way spam can be sent via alternate routes or did I =
set up my filter wrong?
[email]jxxxxx@core1.xxx[/email]> show configuration interfaces at-0/0/0.0=20
description "Senior Commmunity ";
encapsulation atm-snap;
vci 00.00;
shaping {
vbr peak 1368000 sustained 1368000 burst 3;
queue-length 10;
}
family inet {
filter {
input abuse_smtp_block;
output abuse_smtp_block;
}
address 66.243.190.77/30;
}
**********************************
term 10 {
from {
source-address {
66.243.190.214/32;
}
source-port smtp;
}
then {
count counter;
log;
discard;
}
}
term 20 {
then accept;
}
------=_NextPart_000_0013_01C68BBB.7D8A2AF0
Content-Type: text/html;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=3DContent-Type content=3D"text/html; =
charset=3Diso-8859-1">
<META content=3D"MSHTML 6.00.2900.2873" name=3DGENERATOR>
<STYLE></STYLE>
</HEAD>
<BODY bgColor=3D#ffffff>
<DIV><FONT face=3DArial size=3D2>Hey all,</FONT></DIV>
<DIV> </DIV>
<DIV><FONT face=3DArial size=3D2>New to list but I hope I'm in the right =
place....</FONT></DIV>
<DIV> </DIV>
<DIV><FONT face=3DArial size=3D2>so I setup a filter on a Juniper M20 =
because I have=20
an old folks home sending spam and they can't seem to figure out how to =
clean up=20
their computers. Now port 25 has been blocked both in and out since June =
7 but=20
I'm still receiving complaints timestamped after the period I put on the =
filter.=20
Is there any way spam can be sent via alternate routes or did I set up =
my filter=20
wrong?</FONT></DIV>
<DIV> </DIV>
<DIV><FONT face=3DArial size=3D2><A=20
href=3D"mailto:jxxxxx@core1.xxx">jxxxxx@core1.xxx</A>> show =
configuration=20
interfaces at-0/0/0.0 <BR>description "Senior Commmunity =
";<BR>encapsulation=20
atm-snap;<BR>vci 00.00;<BR>shaping {<BR> vbr peak =
1368000=20
sustained 1368000 burst 3;<BR> queue-length =
10;<BR>}<BR>family=20
inet {<BR> filter=20
{<BR> input=20
abuse_smtp_block;<BR> output=20
abuse_smtp_block;<BR> }<BR> address=20
66.243.190.77/30;<BR>}</FONT></DIV>
<DIV> </DIV>
<DIV><FONT face=3DArial =
size=3D2>**********************************</FONT></DIV>
<DIV> </DIV>
<DIV><FONT face=3DArial size=3D2>term 10 {<BR> from=20
{<BR> source-address=20
{<BR> =20
66.243.190.214/32;<BR> =20
}<BR> source-port=20
smtp;<BR> }<BR> then=20
{<BR> count=20
counter;<BR> =20
log;<BR> =20
discard;<BR> }<BR>}<BR>term 20 {<BR> =
then=20
accept;<BR>}<BR></FONT></DIV></BODY></HTML>
------=_NextPart_000_0013_01C68BBB.7D8A2AF0--
--===============2130858662==
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
_______________________________________________
firewall-wizards mailing list
[email]firewall-wizards@listserv.icsalabs.com[/email]
[url]https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards[/url]
--===============2130858662==--
