Filter
Top Products
Anti-Spam
836
SonicOS 5.8.1 Administrator Guide
Only if the IP address passes all of these tests does the SonicWALL UTM appliance allow that
server to make a connection and transfer mail. If the IP address does not pass the tests, there
is a message from SonicOS to the requesting server indicating that there is no SMTP server.
The connection request is not accepted.
Address and Service Objects
The Anti-Spam feature of SonicOS introduces new Address and Service Objects to manage a
customer’s email server(s). These objects are used by the Anti-Spam Service for its NAT and
Access Rule policies. Automatically-created rules are not editable and will be deleted if the
Anti-Spam Service is disabled.
When enabled, the Anti-Spam service creates NAT policies and Access Rules to control and
redirect email traffic. The policies and rules are visible in the Network > NAT Policies and
Firewall Rules pages, but are not editable. These automatically-created policies are only
available when the Anti-Spam service is enabled.
When the Anti-Spam service is licensed and activated, the Anti-Spam > Settings page shows
a single checkbox to enable Anti-Spam. Selecting the checkbox invokes the Destination Mail
Server Policy Wizard if there is no existing custom access rule and NAT policy for an already-
deployed scenario. When you set up generated policies, the Anti-Spam service must know
where the emails are routed behind the SonicWALL UTM appliance. Specifically it needs the
destination mail server IP address and its zone assignment. The Destination Mail Server Policy
Wizard is launched if this data cannot be found.
You will need the following information for the wizard:
• Destination Mail Server Public IP Address – The IP address to which external MTAs will
be connecting by SMTP.
• Destination Mail Server Private IP Address – The internal IP address (behind the
SonicWALL UTM appliance) of the Exchange or SMTP server.
• Zone Assignment – The zone to which the Exchange server is assigned.
• Inbound Email Port – The TCP service port number to which emails will be sent, also
known as the inbound SMTP port.
Policies and Address Objects created by the wizard are editable and persist even if the Anti-
Spam service is disabled.
Block-list This IP address is banned from connecting to the SonicWALL UTM
appliance.
Reputation-list If the IP address is not in the previous lists, the SonicWALL UTM
appliance checks with the GRID Network to see if this IP address has a
bad reputation.
Defer-list Connections from this IP address are deferred. A set interval must pass
before the connection is allowed.
DoS If the IP address is not on the previous lists, the SonicWALL UTM
appliance checks to see if the IP address has crossed the Denial of Service
threshold. If it has, the appliane uses the existing DoS settings to take
action.
Evaluation Description