Relay Control | Surf Control 5.2.4 manual

2

SYSTEM SETTINGS

Receive Settings

RELAY CONTROL

RiskFilter enables you to stop your e-mail system from being used as an open relay by spammers. Relay control limits the server to only relaying e-mails for specific domains. Use the Relay Control screen to control relaying to and from your system.

Figure 2 - 17 The Relay Control screen

Note: If you wish to define access to reports and logs by domain, you will first need to add these domains to this page.

SPF Authentication Configuration

You can ask E-mail Filter Appliance to check that messages are actually from a legitimate server. If enabled, this feature checks messages against the SPF record belonging to the sender and, if the server is not listed, the message will be rejected. This stops spammers forging messages that seem to be from the users themselves.

Controlling relaying of messages

Messages from IP addresses that have been added to the ‘Accept e-mail for relay from the following IPs’ list will be accepted for relay without any of the Connection Control, Relay Control, Message Control, Directory Attack Control or User Validation processes being performed on them.

To control relaying of messages:

1Select Receive Settings > Relay Control from the System Settings tab.

2Select the Perform SPF checking against e-mail sender check box if you want incoming message senders to be checked against an SPF (Sender Policy Framework) record. When SPF checking is selected RiskFilter will reject mail senders who fail to meet the SPF policy of the sending domain. Any other messages will be accepted, unless the following are selected:

•Reject mail from senders with no SPF records – When SPF checking finds that the senders domain does have an SPF record, reject the mail.

30 Administrator’s Guide

SurfControl RiskFilter - E-mail V5.2.4

Image 35

Surf Control 5.2.4 manual Relay Control, SPF Authentication Configuration, Controlling relaying of messages

Contents

SurfControl RiskFilter E-mail Contents Policy Manager Riskfilter System Management Console Appendix Chapter Managing Your Messages with Riskfilter HOW Riskfilter Works Relay Control ConnectionControl Mail Exchanger IP Address MX Preference Load Balancing with Riskfilter Load balancing with RiskFilter Https//hostnameoripaddress10000 Launching Surfcontrol RiskfilterRiskfilter System Management Console Opening the RiskFilter Management Console Riskfilter Management Console AdministratorHttps//hostnameoripaddress/admin Before YOU Start System Settings Terminology Used System Settings TABWhat can be Configured in the System Settings TAB? Postmaster e-mail address ConfigurationSelect General Configuration from the System Settings tab General Smtp greeting Other SettingsAdmin Console Session Timeout Editing User Directories User Directories Open the User Directories screen Deleting a User Directory Click Add in the User Directories screen Microsoft Active Directory Select IBM Ldap Server IBM Ldap server Click Add in the User Directories screen Select Generic Ldap Generic Ldap Esmtp Server Information Validation settings Local Database Recipient File To add a local database Click Add Local Database Add/Edit Address screen is displayed Select General Secure Proxy from the System Settings tabSecure Proxy Select Enable Imap Proxy Select Enable POP3 ProxySelect Enable Webmail Proxy Logs and Archives Setting up the storage directoriesSelect General Directories from the System Settings tab Notifications Certificate Certificate Signing Request Select General Certificate from the System Settings tabImporting Certificates Exporting Certificates Connection Control Receive SettingsConnection Settings Allow Access List Smtp Greeting Delay 16 The Directory Attack Control screen Directory Attack Control Controlling relaying of messages SPF Authentication ConfigurationRelay Control Allowing relaying to specific domains Relay for Internal Senders Add validation servers Recipient ValidationAdding details of domains 19 The Message Control screen Message Control 20 Set what action is taken on messages Exception Control To configure exception control Adding an IP or subnet address to the blacklist Black List Adding domain or e-mail addresses to the blacklist Importing and exporting Lists Dynamic White List White ListAdding an IP or subnet address to the White List Receive Settings Delivering the messages Send SettingsSetting up the destination domains DOMAIN-BASED Delivery Select Forward mail to the following Smtp servers Using TLS authentication Transport Layer Security Advanced Delivery Traffic Control Send Settings Account Manager User Management Specifying Administrator Access Changing the Administrator Account Password Setting up Administrator Access Select Account Manager from the User Management menu Editing Administrator AccountsPersonal E-MAIL Manager Setting up the PEM message 31 What the user sees Personal E-mail Manager Importing lists of users Adding usersExporting lists of users User List End-user Bypass Anti-Spam SettingSetting up End User Control END-USER Control Authenticating PEM users User Authentication Authenticating remote users Update NOW License & Updates AVA and ASA License Expired Updating your Anti-Spam Agent Definitions Updating the Anti-Virus Agent Scheduled UpdateSelect the Anti-Virus Agent Update check box Updating Component Licenses Select the Anti-Spam Agent Update check boxLicense Status Updating the Anti-Spam Agent Viewing component licenses Update ServerManually setting up a license server User Number Exceeded License Server Submitting a Support Request Admin Guide Contact SupportSelect Help Contact Support from the System Settings tab Help Configuration Wizard Firstboot Wizard KEY Points Key Points Policy Manager Policy Manager TAB What can be Configured in the Policy Manager TAB? Defining the Action Creating a PolicyDefining Users Global Policy Filter List Defining the Rules Importing and Exporting Lists Address Group Deleting Address Groups Adding Queues Queue Manager Select Queue Manager from the Policy Manager tab Editing a Queue Editing SurfControl Dictionary properties Dictionary ManagerSurfcontrol Dictionaries Deleting a word or phrase Changing the value of words in the SurfControl DictionariesAdding words to the SurfControl Dictionaries Create a new dictionary Custom Dictionaries Importing a SurfControl Dictionary Pack Importing Dictionaries Worthlesstab space15 balancetab space10 Creating a unicode text file Select Import from a Unicode text file Importing a unicode text fileExporting a dictionary Creating a NEW SUB-POLICY Global Policy 15 Enter the details of the new Sub-policy Select Global Policy from the Policy Manager tab Adding Filters to the Policy Editing a SUB-POLICYDeleting a SUB-POLICY 18 The Global Policy Filter List screen Defining a Filter Select Global Policy Filters from the Policy Manager tab ANTI-VIRUS Agent FilterCreating a new filter Editing the Anti-Virus Agent Filter Global Policy Select Anti-Spam Agent DFP ANTI-SPAM Agent Filters Select Anti-Spam Agent Heuristics Configuring the Anti-Spam Agent Heuristics Filter Select Anti-Spam Agent LexiRules Configuring the Anti-Spam Agent LexiRules Filter 23 The Internet Threat Database Filter screen Internet Threat Database Filter Select the Internet Threat Database Filter and click Next Standard DisclaimerEditing the Internet Threat Database Filter Select the Standard Disclaimer Filter Editing the Standard Disclaimer Filter Select the General Content Filter and click Next General Content FilterEditing the General Content Filter Select the Advanced Content Filter and click Next Advanced Content FilterEditing the Advanced Content Filter 27 The Expression screen Using the Expression List Using Logical Operators Occur gateway Assume Frequency =2 Examples showing the use of OperandsRiskFilter and Gateway and Innovation RiskFilter or Gateway or Innovation 28 Message Attachment Filter screen Message Attachment Filter Select the Message Attachment Filter and click Next Editing the Message Attachment Filter Select the Internet Content Guardian Filter and click Next Content GuardianCreating a new Content Guardian filter Adding a filtering rule How the Dictionary Threshold Filter works Dictionary Threshold FilterDeleting a filtering rule Select the Dictionary Threshold Filter and click Next Configuring the Dictionary Threshold Filter Global Policy KEY Points Key Points Reports & Logs Reports and Logs TAB What can be Configured in the Reports and Logs TAB? Server status monitoring Dashboard Select Specified date range from the Logs for list box Master ReportQuerying the Master Report Select Master Report from the Reports and Logs tab Master Report Querying the Message Report Message Report Querying the Policy Report Policy Report Querying the Virus Report Virus Report Querying the Spam Report Spam Report Querying the Connection Report Connection Report Connection Report System Report Click View Messages Isolated MessagesManaging Isolated Messages Select Isolated Messages from the Reports and Logs tab Isolated Messages Select Virus Messages from the Reports and Logs tab Virus MessagesManaging the Virus Messages 14 An Archived message Select Spam Messages from the Reports and Logs tab Spam MessagesManaging Spam Messages To view a message click the subject Select Archived Messages from the Reports and Logs tab Archived MessagesManaging Archived Messages Export Messages Click Reprocess Messages Reprocess MessagesView Messages 19 Select the check box alongside the message Select Deferred Messages from the Reports and Logs tab Deferred MessagesQuerying Deferred Messages 22 An Archived message KEY Points Key Points RiskFilter System Management Console Overview What can be Configured with the System Management CONSOLE? Rfmngr Account Accessing the Riskfilter System Management Console Webmin TAB What can be Configured in the Webmin TAB? Webmin Actions LOG Webmin ConfigurationIP access control Select Webmin Configuration from the Webmin tab Ports and Addresses Select Language from the Webmin Configuration screenSelect Logging from the Webmin Configuration screen Language Select Webmin Servers Index in the Webmin Webmin Servers IndexProxy Servers Adding Webmin Servers System TAB What can be Configured in the System TAB? Historic System Statistics Bootup and ShutdownChange Passwords Select Change Passwords in the System tab Select Multi Gateway Policy Routing in the System tab Multi Gateway Policy Routing Network Interfaces Network Configuration Enter an IP Address Multi-NIC configuration in RiskFilterSetting up additional NICs Routing and Gateways 11 The Create Bootup Interface screen DNS Client Select DNS Client from the Network Configuration tab 15 Host Addresses Host Addresses Select System Time in the System tab Running ProcessesSystem Time Click Sync system time System and Server Status Riskfilter TAB What can be Configured in the Riskfilter TAB? Riskfilter Backup Manager Riskfilter Services Manager Click Complete Riskfilter Cluster Wizard 25Load balancing Load balancing with RiskFilter 26 RiskFilter in a cluster set up Select Web Access Manager in the RiskFilter tab Riskfilter WEB Access Manager 28 The Update RiskFilter-E-mail screen Update Riskfilter E-MAIL KEY Points Key Points Appendix # sudo /etc/init.d/smgd status Using the Command Line Interface QTOOL.SH Clean queues Using the Command Line Interface Using the Command Line Interface Using the Command Line Interface Example 6 uninstalling the RiskFilter software UNINSTALL.SH All items were successfully uninstalled Productivity Categories Internet Threat Database CategoriesInternet Theat Database Categories Core / Liability Categories Core / Liability Categories Productivity Categories Other Special Events Index Administrator’s Guide SurfControl RiskFilter E-mail SurfControl RiskFilter E-mail Administrator’s Guide OpenSSL Sun RPC Apache Software License, Version Expat XML Parser Toolkit SPFJava Ldap