Limiting SMTP Port 25 on my Network

CyberDaeng · April 16, 2024, 4:47am

Hi,

Is there a way to limit of using SMTP in my IPs? So we are trying to create Firewall Raw rules with the following config.

IP Firewall Raw
Chain: prerouting
Src-Address-List: !Whitelist-SMTP (So I create address-list to whitelist SMTP)
Protocol: TCP
Source Port: 25
Action: Drop

But eventually, all incoming and Outgoing SMTP are being blocked. Im planning only to block for spammers to use our IP Address as SMTP Mail Relay.

Secondly, can I limit all email send out? For example 50 email per hour for every IPs?

Thank you very much for all advice…

Sincerely,

Hernan

vingjfg · April 16, 2024, 5:19am

Hi there

Can you send the command you created?

/ip/firewall/raw/export
/ip/firewall/address-list/export

Regarding limiting the number of email per hour per IP, not that I know of in the default configuration. The Mikrotik has a pretty basic firewall and in no case something that does DPI/L7 inspection well. For that, you will need the equivalent of an SMTP gateway.