ScottKnauss Posted November 20, 2006 Share Posted November 20, 2006 The topic is the main point. Our firewall is the address that gets listed. It is listed every few weeks, and the gets automatically removed. The last few times it has happened, it was removed before we had any complaints so I don't even know why spam Cop is listing us. There are more than 20 Exchange servers behind our firewall (Sidewinder G2). The firewall only allows 4 machines to send mail outbound. 3 of them are SuSE10.0 Hardened DNS and Mail servers. The 4th is an Exchange server. The 4th is my primary suspect, but I have no idea how to prove it. It is setup as a bridgehead (I'm the Unix/Linux guy, so I've never really understood the bridgehead and have threatened to turn it off on numerous occasions because of problems it has caused.) The rest of the exchange servers in the network pass mail first to Symantec Virus Scanners (Also set to do heuristics for spam) that relay to the 3 Linux DNS & Mail servers. The biggest problem is that all of those exchange servers are administered by different people. Any help on figuring out were this is originating, or ideas on how to find the culprit would be appeciated. Thank you, Server Info: 184.108.40.206 Link to comment Share on other sites More sharing options...
This topic is now archived and is closed to further replies.