As per cybersecurity best practices, the default Internet Firewall policy blocks outgoing SMTP and SMB traffic. This is an example of an Internet Firewall policy where rule 6 blocks SMB and SMTP traffic:
In case you have a valid outbound service in your organization, you will have to create an exception to rule 6 to allow the SMTP access to maintain functionality.
As per Cato's best practices SMTP and SMB should only be opened for those specific entities that require it. In some occasions, you may want to limit the SMTP traffic to a specific server as well (e.g. Google, O365), so this can be considered also as a best practice.
At last, to be more specific you can also allow services such as Office365 (or Gmail), that will do the same work.
-
From the navigation menu, click Security > Internet Firewall.
-
Create a new exception for the desired protocol or service, from the more menu at the end of the rule, select Add Exception.
In the example above, rule 6.1 is an exception that allows SMTP Service/Port specific hosts for the HQ Source.
-
Create a rule above 6, that allows SMTP or SMB service for the specific servers and apps that require access.
In the example above, rule 5 allows the email apps used by the organization for the Source All SDP Users and All Sites.
0 comments
Please sign in to leave a comment.