المساعد الشخصي الرقمي

مشاهدة النسخة كاملة : فايروول CSF Firewall حل مشكلة RELAY Alert / RELAY, Remote IP



Rise Company
11-10-2022, 14:21
فايروول CSF Firewall حل مشكلة RELAY Alert / RELAY, Remote IP
طريقة حظر المرسل Blacklisted SMTP IP addresses

المشكلة :

فايروول csf يبلغ ان هناك RELAY Alert / RELAY, Remote IP
من احد الايميلات وتجد داخل هذا الايميل المئات من الايميلات bounce
تبلغ ان الايميل Undelivered Mail Returned to Sender
ويظهر ان الايميل من <> هذا الرمز تجده داخل Trackdelivery
وبالطبع فى الهيدر يظهر ip و اسم السيرفر المرسل من دولة اخري



I am getting hundreds of these errors in my inbox everyday.

Time: Thu Feb 19 23:09:28 2015 -0500
Type: RELAY, Remote IP - 111.69.139.68 (US/United States/mx55.h.outbound.createsend.com)
Count: 101 emails relayed
Blocked: No

Sample of the first 10 emails:

2015-02-19 23:02:56 1YOenn-0002bF-RJ <= [email protected] H=mx55.h.outbound.createsend.com [204.75.142.55]:35593 P=esmtp S=50023 [email protected] T="Just Car News: Reel Deal Winners, Latest from Mighty Car Mods, ADGP and more" for [email protected]

do anyone knows what is it?

حل المشكلة :

This is not outgoing spam being relayed through the VPS. This is incoming spam being received by the VPS which caused LFD to trigger a RELAY alert due to the remote IP address '111.69.139.68' sending to over 100 recipients within an hour's time.

هذه الايميلات لم ترسل من ايميلك انماهاكر ارسل لك bulk emails
مستخدم سيرفره يرسل الى سيرفر مخصص للايميلات ثم وصل لك

اعمل block للـ ip + server name
من داخل csf و cphulk

+

You can use the Exim Blacklist to refuse all SMTP traffic from an IP
WHM >> Service Configuration >> Exim Configuration Manager
Basic Editor -Access Lists
Blacklisted SMTP IP addresses
(IP addresses from which SMTP connections are dropped unconditionally)

https://www.rise.company/upload/uploads/166556807417761.png

هذه الطريقة الوحيدة التى هتعمل مع فى حظر ip المرسل

شاهد ايضا
السي بانال WHM/cPanel ما هو SMTP Relay / Open mail relay ؟ (https://www.rise.company/forum/showthread.php/87145-%D8%A7%D9%84%D8%B3%D9%8A-%D8%A8%D8%A7%D9%86%D8%A7%D9%84-WHM-cPanel-%D9%85%D8%A7-%D9%87%D9%88-SMTP-Relay-Open-mail-relay-%D8%9F)


المرجع:
https://www.knownhost.com/forums/threads/lfd-on-host-yourdomain-com-relay-alert-for-111-69-139-68-us-united-states.3349/
https://forum.configserver.com/viewtopic.php?t=1493
https://forum.configserver.com/viewtopic.php?t=8236
https://forums.cpanel.net/threads/difference-between-alerts.612903/
https://forums.cpanel.net/threads/difference-between-alerts.612903/