If the IP address is spoofed, how does firewall rejects it? In the case of MS Exchange, will implementing something like SPF (Sender Policy Framework) and Sender ID filtering help?
Sun On Thu, Jul 28, 2016 at 11:48 AM, David Benfell <dbenf...@gmail.com> wrote: > On 07/27/2016 08:24 PM, Roger Goh wrote: > > Our headquarter's email server auto-forward emails over to our > email server & I have a concern: > Can source (ie smtp.zzzbank.com.au & srvm02.zzzbank.com.au below) > & the IP addresses be spoofed? > > Yes. If you are concerned about this and you control the domain in > question, you probably should put legitimate sending servers on their own > subnet and limit SMTP traffic accordingly. > > I get into trouble whenever I try to mess with firewalls myself, but I > believe it would then be possible to reject spoofed IP addresses because > they would be on the wrong interface. > > > -- > David Benfell, ph.d.benf...@parts-unknown.org > >
