Configuring SMTP Connections

Use this screen to configure the SMTP interface, connection access, and the Transport Layer Security (TLS)

To configure SMTP connections:

  1. Choose Administration > IMSA Configuration > SMTP Routing from the menu. The SMTP tab displays by default.  

  2. Click the Connections tab.

  3. Under SMTP Interface, configure the following:

  4. Under Connection Control, click the radio button to accept or deny connections from specific IP addresses.

192.168.1.1

192.168.2.0:255.255.255.0

192.168.3.1:255.255.255.128

192.168.4.100

192.168.5.32:255.255.255.192

  1. Under Transport Layer Security Setting, do the following to enable Transport Layer Security (TLS):

    Provides a secure connection between the IMSA SMTP server and the client.

    1. Select the check box next to Enable Incoming Transport Layer Security.

      Causes the IMSA SMTP Server to provide TLS support to SMTP clients, but does not require that clients use TLS encryption to establish the connection.

    1. Select the check box next to Only accept SMTP connection by TLS if you will only accept incoming connections that are secure.

      Causes IMSA SMTP Server to accept messages only through a TLS connection.

    2. Click a Browse button next to CA certificate, Private key, or SMTP server certification, and find the relevant file.

      The IMSA SMTP server's public key made available to the SMTP clients for generating the session keys.

      This key has to be uploaded in order to enable TLS connection.

      The SMTP client encrypts a random number using IMSA SMTP server's public key and an encryption key to generate the session keys.

      IMSA SMTP server then uses the private key to decrypt the random number in order to establish the secure connection.

      This key has to be uploaded in order to enable TLS connection.

      A CA certificate is usually used for verifying SMTP clients. However, IMSA does not verify the client and only uses the CA certificate for enabling the TLS connection.

      Only upload this file if it is provided to you together with the public key. Otherwise, this file is not mandatory for enabling a TLS connection.

    3. Click Upload to save the file on the InterScan™ Messaging Security Appliance (IMSA) server.

    4. Select the check box next to Enable Outgoing Transport Layer Security to protect outbound messages, if desired.

See the IMSA Administrator's Guide for more information on configuring TLS settings.

  1. Click Save.

 

See also: