Use this screen to configure the SMTP interface, connection access, and the Transport Layer Security (TLS)
To configure SMTP connections:
Choose Administration > IMSA Configuration > SMTP Routing from the menu. The SMTP tab displays by default.
Click the Connections tab.
Under SMTP Interface, configure the following:
Port—Type the listening port of the SMTP server.
Disconnect after { } minutes of inactivity—Type a timeout value.
Simultaneous connections—Click No limit or Allow up to { } connections and type the maximum number of connections.
Under Connection Control, click the radio button to accept or deny connections from specific IP addresses.
Accept all, except the following list:
Single computer—Type an IP address, and then click >> to add the IP address to the list.
Group of computers—Type a subnet address and mask, and then click >> to add the group to the list.
Subnet mask—Type a subnet mask.
Import from file—Click to import a deny IP address list from a file. The following shows sample content of an IP list text file:
192.168.1.1
192.168.2.0:255.255.255.0
192.168.3.1:255.255.255.128
192.168.4.100
192.168.5.32:255.255.255.192
Deny all, except the following list. Click this radio button to expand the options available, and configure the list.
Under Transport Layer Security Setting, do the following to enable Transport Layer Security (TLS):
Provides a secure connection between the IMSA SMTP server and the client.
Select the check box next to Enable Incoming Transport Layer Security.
Causes the IMSA SMTP Server to provide TLS support to SMTP clients, but does not require that clients use TLS encryption to establish the connection.
Select the check box next to Only accept SMTP connection by TLS if you will only accept incoming connections that are secure.
Causes IMSA SMTP Server to accept messages only through a TLS connection.
Click a Browse button next to CA certificate, Private key, or SMTP server certification, and find the relevant file.
The IMSA SMTP server's public key made available to the SMTP clients for generating the session keys.
This key has to be uploaded in order to enable TLS connection.
The SMTP client encrypts a random number using IMSA SMTP server's public key and an encryption key to generate the session keys.
IMSA SMTP server then uses the private key to decrypt the random number in order to establish the secure connection.
This key has to be uploaded in order to enable TLS connection.
A CA certificate is usually used for verifying SMTP clients. However, IMSA does not verify the client and only uses the CA certificate for enabling the TLS connection.
Only upload this file if it is provided to you together with the public key. Otherwise, this file is not mandatory for enabling a TLS connection.
Click Upload to save the file on the InterScan™ Messaging Security Appliance (IMSA) server.
Select the check box next to Enable Outgoing Transport Layer Security to protect outbound messages, if desired.
See the IMSA Administrator's Guide for more information on configuring TLS settings.
Click Save.
See also: