Outbound port 25 rule not working

[ericwisg]

Hi,

I am new to Sonicwall pro4100 and I hope anyone can help me. I have configured to block outbound port 25 from LAN to WAN and only my mail server can access it. When I test the rule with any of the PCs in the Lan, I still can telnet any external smtp host. Isn't it suppose to block it?

Also another matter related to this is the logs. I would like to know which IP address is trying to access port 25 through the report. Is it able to do so?

Appreciate any help given on this.

 

[joepc]

Check the priorities of the rules, they process from top to bottom.

To make this work you would create a LAN to WAN rule to deny all smtp traffic. Then you would create a more specific rule to allow smtp from the mail server IP only. The more specific the rule the higher priority it gets (note priority 1 is a higher than priority 2).

NOTE: You can manually adjust rule priorities, but not NAT Policies, or static routes.

 

[ericwisg]

hi joepc,

Thanks for the reply. If it processes from top down, shouldn't I set the mail ip address rule first and set the LAN-WAN rule as the second one? Sorry just some doubts that need to clarify.

Appreciate any advice from anyone.