Spam Filter ISP Support Forum

  New Posts New Posts RSS Feed - IP address initiating the connection
  FAQ FAQ  Forum Search   Register Register  Login Login

IP address initiating the connection

 Post Reply Post Reply
Author
T View Drop Down
Guest Group
Guest Group
Post Options Post Options   Thanks (0) Thanks(0)   Quote T Quote  Post ReplyReply Direct Link To This Post Topic: IP address initiating the connection
    Posted: 29 May 2003 at 12:24pm

DNS blocklists:  Does SpamFilter check the "original initiating connection" ...or the last connection (the firewall address) forwarding the message to SpamFilter server? 

 

 

Back to Top
LogSat View Drop Down
Admin Group
Admin Group
Avatar

Joined: 25 January 2005
Location: United States
Status: Offline
Points: 4065
Post Options Post Options   Thanks (0) Thanks(0)   Quote LogSat Quote  Post ReplyReply Direct Link To This Post Posted: 29 May 2003 at 5:24pm

It checks whatever IP is making the connection to the NIC card on the SpamFilter's server. This may or may not be the firewall's address. Most firewalls will allow you to "pass on" the external address connecting to the firewall down to the private interface, allowing the server SpamFilter is on to see the actual remote IP rather than the firewall's IP.

Roberto Franceschetti
LogSat Software

Back to Top
Desperado View Drop Down
Senior Member
Senior Member
Avatar

Joined: 27 January 2005
Location: United States
Status: Offline
Points: 1143
Post Options Post Options   Thanks (0) Thanks(0)   Quote Desperado Quote  Post ReplyReply Direct Link To This Post Posted: 31 May 2003 at 2:51am

Just to clarify ... when a remote mail server makes a connection to YOUR mail server on port 25 (or any other port for that matter) the only IP the local server sees is the inbound connections IP. A firewall and all the routers and switches in between are not making the connection to the server so they are effectivly not "seen" by the receiving server.  This has nothing to do with the SpamFilter software ... it has to do with the way a connection is made from machine to machine VIA TCP/IP. 

In the reverse direction, if you are doing NAT (network address translation) the remote server sees your NAT address, not the private address of your server.  If you were a Spammer, the IP on your NAT device (firewall or router) would be the IP that would eventually get on a blackhole list so in that case, ALL servers, inside your network would become blocked.

Dan Seligmann

Back to Top
 Post Reply Post Reply
  Share Topic   

Forum Jump Forum Permissions View Drop Down



This page was generated in 0.066 seconds.