Forum Discussion
NimbostratusHow to insert-f orwarder for port 25
HI All,
I have exchange setup in my environment with SNATAUTOMAP . we see for port 25 there are lot of spam mails in exchange but unable to identify source as we use SNAT. we dont do ssl offload on f5 . is there any way to insert x-forwarder in for port 25 traiffc to show source IPS ?
3 Replies
- Kevin_Stewart
Employee
XFF is an HTTP header, so no that wouldn't work for port 25 SMTP traffic. You can of course inject a true source into SMTP traffic, but then you'd need some way on the server to understand that additional payload information, which will be a lot less trivial.
- Kevin_Stewart
The point I'm making is that while you can inject additional information into SMTP payload data, you'll be hard pressed on the server side (the email servers) to actually read and understand that data without some amount of customization. In lieu of that you're very best option is to configure the environment so that you don't have to SNAT the traffic.
Brad_ParkerCirrus
If you servers can't use the F5 as the gateway you many want to look into using a nPath architecture so you can see the original source. https://support.f5.com/kb/en-us/products/big-ip_ltm/manuals/product/ltm-implementations-11-5-0/4.html.
