Switch to full style
Use this forum to post questions relating to WinGate, feature requests, technical or configuration problems
Post a reply

Intercepting SMTP Auth Failed

Aug 05 17 5:01 am

Hi

I would like to blacklist the IPs failing to authenticate too often. How can I do that ?

Is there a way to intercept "SMTP AUTH failed" with SMTP Policies ?

Thanks for answer

Best regards

Re: Intercepting SMTP Auth Failed

Aug 08 17 12:06 pm

Hi

Any auth failure pushes an event, which you can attach policy to.

One of the bits of information in the event is the name of the service the client was trying to authenticate to.

So you can set up policy to deal with what happens when someone fails auth to SMTP (e.g. add their IP to a black list or similar etc.).

The AuthFailed event requires an Enterprise license.

Regards

Adrien de Croy
Post a reply