Hi,
We have come across an issue where we need our customers to lock-down their Domino servers so that they only receive email from our servers (using the “Allow connections only from the following SMTP internet hostnames/IP addresses:” field) as we are cleaning the spam with SpamSentinel and sending them only the good stuff.
The issue arises when the customer has external users using Outlook or Smartphones to relay outgoing messages via the Domino server, the IP/Hosts of these users is often dynamic and so can’t be added to the restrictions field.
I set up Authenticated SMTP in the hope that this may work in a similar fashion to the ‘Allow all authenticated users to relay’ but this does not seem to be the case. When a user connects, Domino does authenticate them but subsequently refuses the connection because they are not on the allowed list.
The Admin Help implies that you can use groups in the restrictions field but entering one and adding the authenticating user to it makes no difference, so I presume that this group can only contain hosts/IPs.
The end result is that the restriction cannot be applied and a spammer can connect directly to the server, bypassing our spam checks.
I would be interested to hear if anyone else has come across this issue and found a work-around.
Thanks,
Nick