In: Computer Science
A consultant has recommended your organization look to increase its security profile in relation
to SMTP traffic. Management has asked you devise a firewall-specific strategy to address the
recommendation. What strategy would you recommend, and why?
Your answer should be approximately 200-250 words in length.
Solution:
The DNS blacklist database is queried via a DNS lookup using the
sender's IP address. If the DNS reputation database is not
available, the email is not modified. If the domain or IP address
is blacklisted, the email's subject line is modified to start
with[SPAM]
and the following non-configurable MIME type
headers are set:
X-Spam-Prev-Subject:
Your email subject without the
[SPAM] tag.
X-Spam-Flag: YES
X-Spam-Status: Yes
X-Spam-Level: ***
Some of the steps to be taken are,
Step1. Import the mail server certificates
import the SSL certificates of your internal mail server(s). For more information, see How to Use and Manage Certificates with the Certificate Manager.
Step 2: Enable virus protection for mail traffic
Enable virus scanning and SSL Inspection in the firewall.
b.barracudacentral.org
Step 3. Create a DNAT access rule for incoming SMTP traffic
Enable Application Control, SSL Interception, and Virus Protection in the access rule.