Zimbra offers Open Source email server software and shared calendar for Linux and the Mac
Go Back   Zimbra :: Forums > Zimbra Collaboration Suite > Administrators
Reload this Page Relay from internal network

Welcome to the Zimbra :: Forums!
Welcome, if you would like to post a comment please register. We also encourage you to explore all things Zimbra with our team and members of the community.

Reply
 
LinkBack Thread Tools Search this Thread Display Modes
  #1 (permalink)  
Old 07-15-2009, 11:25 AM
Starter Member
  
Posts: 1
Default Relay from internal network
Hi, i´m newbee in zimbra.
I have a relay open for internal network.
Some workstation be infect by virus and send a mount of spams.
I find in administration console, but all mails from my internal network have send from 127.0.0.1.
How log can help me?
Reply With Quote
  #2 (permalink)  
Old 07-17-2009, 01:24 AM
Moderator
  
Posts: 7,928
Default
Welcome to the forums

Well they will show that IP address but there will also be other ones in the headers. It would help if you were to post the headers from one of the emails and we can decode it for you.
__________________
Reply With Quote
  #3 (permalink)  
Old 07-17-2009, 02:01 AM
Outstanding Member
  
Posts: 594
Default
You can find client IP addres from which they are sending spams in zimbra.log. That can be usefull in finding the affected machine.
Reply With Quote
  #4 (permalink)  
Old 07-24-2009, 12:06 AM
Loyal Member
  
Posts: 81
Lightbulb Trusted network and spam in Zimbra
You should check Zimbra's trusted network setting.
If it includes your firewall/gateways internal network address you have configured it to be an open relay. Congratulations.

If your local area network is in LAN and your network is something like...
192.168.0.x or 10.x.x.x then you should definitely NOT include your firewall address in the trusted network.

For some obscure reason Zimbra's default configuration is very SPAM friendly when it comes to local area networks (LAN).

Easiest way to fix this is simply put an /32 at the end of the LAN address in trusted network setting. This will make the Zimbra server only trust it self. (And those who log in to it with proper credentials.)
__________________
SamTzu
-----------------------------------------------
"I keep hitting the esc key, why am I still here?"
Reply With Quote
  #5 (permalink)  
Old 07-24-2009, 12:21 AM
Moderator
  
Posts: 7,928
Default
Quote:
Originally Posted by SamTzu View Post
For some obscure reason Zimbra's default configuration is very SPAM friendly when it comes to local area networks (LAN).
Local by nature should mean you trust your people and have a grasp of what they are doing aswell
__________________
Reply With Quote
Reply

« Previous Thread | Today's Posts or Week's Posts | Next Thread »

Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes
Linear Mode Linear Mode


Similar Threads

Product Information

Why Join?

Registering let's you ask questions, makes it easier to search, displays any files attached to posts, and notifies you about replies.

blog.zimbra.com


Home - Blog - Contact Us - Archive - Top


 

SEO by vBSEO ©2011, Crawlability, Inc.