on the Admin UI MTA tab (The sme one you had screenshot). Look lower for the MTA Trusted Networks in the Network section. If your client IP address falls under these subnet. You don't need to authenticate to send email over SMTP. If you want to force authentication for all clients, reduce the scope to only the loopback interface and local interface. (and any ohter relay partner).
I am puzzled by this potential safety issue too.
We planned to make our ZCS5.0 go live later this month. Now it looks like the action will have to be postponed. Please provide solution ASAP.
Thanks very much in advance!
Why do you need to put your external IP address in the MTA trusted network field as the loopback is already in there
I try to use one of below ip address,but can not save the configure.
now 'mta trusted network' have been changed to
local interface(is zimbra internet ip address)
and loopback interface (127.0.0.1).
but i also can send mail without auth by client in my home.
How to setup the configure?
Pls help to solve.
Appreciate for your help.
Last edited by siomon.liu; 07-20-2009 at 08:15 AM.