Outbound connections to SMTP servers

Comments

• stoned Member

  December 2022 edited December 2022

  To or From?

  Port 25 is required for an MTA for successful delivery. Disable AUTH advertisement on port 25. Don't allow anyone login over 25. Only enable advertisement of AUTH on TLS, and only advertise AUTH to selected IPs you want to allow to login for sending mail, and not everyone. Lock everything else down using iptables. Anyone not on the whitelist shouldn't even get an option to use the AUTH command.

  That is if you run your own mailserver. If you are using a provider like mailgun, you don't need worry about SMTP connections inbound/outbound as you are simply using a 3rd party SMTP server. I run my own mail server and don't even use mailgun so I can't comment on that. I'm not even sure if I understand your question to be fair.

  More than likely they'll have a secure SMTP port for your application to use in order to send mail, so you may not even need to worry about anything on your end.

  So long as your system can make outbound connections to whatever secure SMTP port they provide you with, you should be fine. You're retrieving mail through their secure IMAP port I assume, so again, you don't need to worry.

  If you're not running a mail server, you don't have to worry about port 25 or any SMTP port, as no service is running on your box on those ports.

  Hope that makes sense.

  Thanked by 1yoursunny
• tetech Member

  December 2022

  Why do you need two threads for basically the same question?
• TimboJones Member

  December 2022

  I use smtp2go for free and doesn't require outbound port 25. Have you checked mailgun setup requirements?
• stoned Member

  December 2022

  Mailgun doesn't require you to make outbound 25. They will provide you a secure SMTP port where your application can send emails through.

  host: “smtp.mailgun.org”, port: 587, auth: { user: “postmaster@YOUR_DOMAIN_NAME”, pass: “YOUR_SMTP_PASSWORD”, }