As network traffic control?

mthw · June 13, 2011, 5:29pm

The email service of our company we are blocked by the CBL, http://cbl.abuseat.org/.

pointing to our IP business at CBL, we are told that there are in our network of computers that send spam emails.

in order to identify which computers send spam, which network traffic should I check?

how you set any alarms to make sure computers do not exceed a certain amount of bandwidth, like they use programs like emule, torrent,

Thanks to all in advance

omega-00 · June 14, 2011, 12:35am

http://wiki.mikrotik.com/wiki/Dmitry_on_firewalling - the following is a good start on locking down a corporate router.

The traffic you’ll want to be checking is any traffic heading to external mail servers, most commonly on port 25.
Obviously your mail server shouldn’t be restricted but anyone else should either
a) be using the local mail server
or
b) have a port limit of some sort in place.

mthw · June 14, 2011, 7:22am

I did not understand what I should do, keep in mind that I am not very practical about these things. come from the worlds of computers, assemble them, shelter them, but the LAN networks are quite different.

I’m interested to see if the dude can detect which computer is sending spam emails. so take it and format it.

and can do so with the dude?