allowed through if this happens.
Setup Summary
To set up DNSBL SPAM filtering in the SMTP ALG, the following list summarizes the steps:
•
Specify which DNSBL servers are to be used. There can be multiple and they can act both as
backups to each other as well as confirmation of a sender's status.
•
Specify a weight for each server which will determine how important it is in deciding if email is
SPAM or not in the calculation of a weighted sum.
•
Specify the threshold for designating an email as SPAM. If the weighted sum is equal or greater
than this then an email will be considered to be SPAM.
•
Specify a textual tag to prefix to the Subject field of email designated as SPAM.
•
Specify the Drop threshold. If the weighted sum is equal or greater than this then an email will
be dropped entirely. This threshold should be greater or equal to the SPAM threshold. If they are
equal then the Drop threshold will have precedence so that all email will be dropped when that
threshold is reached.
•
Optionally specify an email address to which dropped email will be sent (as an alternative to
simply discarding it). Optionally specify that the TXT messages sent by the DNSBL servers that
failed are inserted into the header of these emails.
Caching Addresses for Performance
To speed processing NetDefendOS maintains a cache of the most recently looked-up sender
addresses in local memory. If the cache becomes full then the oldest entry is written over first.
The Address Timeout value for the cache can be changed by the administrator. This determines how
long any address will be valid for once it is saved in the cache. After this period of time has expired,
a new query for a cached sender address must be sent to the DNSBL servers.
The cache is emptied at startup or reconfiguration and its size of this cache can be controlled by the
administrator.
For the DNSBL subsystem overall:
•
Number of emails checked.
•
Number of emails SPAM tagged.
•
Number of dropped emails.
For each DNSBL server accessed:
•
Number of positive (is SPAM) responses from each configured DNSBL server.
•
Number of queries sent to each configured DNSBL server.
•
Number of failed queries (without replies) for each configured DNSBL server.
The dnsbl CLI Command
6.2.5. The SMTP ALG
Chapter 6. Security Mechanisms
214
Содержание 800 - DFL 800 - Security Appliance
Страница 24: ...1 3 NetDefendOS State Engine Packet Flow Chapter 1 NetDefendOS Overview 24 ...
Страница 69: ...2 6 4 Restore to Factory Defaults Chapter 2 Management and Maintenance 69 ...
Страница 121: ...3 9 DNS Chapter 3 Fundamentals 121 ...
Страница 166: ...interfaces without an overriding IGMP Setting Default 1 000 4 6 4 Advanced IGMP Settings Chapter 4 Routing 166 ...
Страница 181: ...4 7 5 Advanced Settings for Transparent Mode Chapter 4 Routing 181 ...
Страница 192: ...5 5 IP Pools Chapter 5 DHCP Services 192 ...
Страница 282: ...6 7 Blacklisting Hosts and Networks Chapter 6 Security Mechanisms 282 ...
Страница 300: ...mechanism 7 3 7 SAT and FwdFast Rules Chapter 7 Address Translation 300 ...
Страница 301: ...7 3 7 SAT and FwdFast Rules Chapter 7 Address Translation 301 ...
Страница 303: ... Changed on a regular basis such as every three months 8 1 Overview Chapter 8 User Authentication 303 ...
Страница 318: ...8 3 Customizing HTML Pages Chapter 8 User Authentication 318 ...
Страница 322: ...ALG 9 1 5 The TLS Alternative for VPN Chapter 9 VPN 322 ...
Страница 377: ...Management Interface Failure with VPN Chapter 9 VPN 377 ...
Страница 408: ...10 4 6 SLB_SAT Rules Chapter 10 Traffic Management 408 ...
Страница 419: ...11 5 HA Advanced Settings Chapter 11 High Availability 419 ...
Страница 426: ...12 3 5 Limitations Chapter 12 ZoneDefense 426 ...
Страница 449: ...13 9 Miscellaneous Settings Chapter 13 Advanced Settings 449 ...