Question

A consultant has recommended your organization look to increase its security profile in relation to SMTP traffic. Management has asked you devise a firewall-specific strategy to address the recommendation. What strategy would you recommend, and why? Your answer should be approximately 200-250 words in length

Use your own words. Please do not copy and paste or use an answer already posted on Chegg

Answer 1

SMTP is generally a store and foreward protocol,it is well suited for proxying.because any well suited SMTP server can be a proxy it is hard to seperate from proxy, so many of them direct SMTP connection to a bastion host running a secure SMTP server that is the proxy.

Configuring Firewall strategic stratergy

1)Use DNS mail exchange mx records to specify that ur mails are directed to bastion host.

2)On the Bastion host configure the mailer to check the destination address receives in it .So every mail it receives should go throgh this if the mail is sent to external host then it should see it as unusual and if the mail is sent to the internal server it should be good to go .

3) and configure your internal system to send all out going mail to bastian host

4)we may also configure the system to send all the emails with a central email adrress like a company name or enterprise name instead of individual names as a return address

5)The reason or advantage for above point is when you kept central address it will be passed throgh the bastian host and it wont remove any necessary information .it will gurantee you the best service.