On 12/04/05 21:13 -0400, Seth Breidbart wrote:
"George Ou" <george_ou(_at_)netzero(_dot_)com> wrote:
The standard firewall configuration is to block all traffic unless
otherwise specified.
Which RFC defines that "standard"?
You don't need a RFC for that. That is canonical default policy.
While it's true that most SMTP servers will accept port 587,
most firewall policies only permit inbound TCP 25 to an SMTP server.
"most" out of precisely how many you surveyed?
Are we speaking inbound to MX servers, or about outbound SMTP servers?
Would your outbound SMTP servers not be inside your firewall? Or at
least in the DMZ? And given that adjusting firewall rules for a whole
baggage of other protocols is acceptable (voice and OWA come to mind),
why not use a proper SMTP server as an application layer gateway for
SMTP services?
Devdas Bhagat
_______________________________________________
Asrg mailing list
Asrg(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/asrg