Block All Outbound SMTP

[CloudHoster]

We want to block all outbound SMTP traffic for all customer VMs.

Can this be implmented at either Datacenter or Host level so we dont have to add a rule for each customer ?

If someone has some opinion on how this can be implemented. Naturally we also want the ability to allow SMTP traffic at customers request.

Thanks.

 

[spirit]

you can create a security group at datacenter level, with the rules blocking the smtp port. (or other rules)

Then add this security group in customer vm rules.


Then if you want to allow specific vm, you can add a specfic accept rules in the vm rule, before the security groupe

 

[alterman1994]

hey guys, have the same question.

I'd like to block outgoing SMTP for specific VMs

If I do the following:
Datacenter level:
- Firewall: Yes
- Input policy: Allow
- Security rule with SMTP restrictions for outgoing (not enabled)

Node level:
- Firewall: Yes
- Input Policy: Allow

VM:
- Firewall: Yes
- Input Policy: Allow
- Apply security group for DROP outgoing SMTP

will this work?

 

[spirit]

hey guys, have the same question.

I'd like to block outgoing SMTP for specific VMs

If I do the following:
Datacenter level:
- Firewall: Yes
- Input policy: Allow
- Security rule with SMTP restrictions for outgoing (not enabled)

Node level:
- Firewall: Yes
- Input Policy: Allow

VM:
- Firewall: Yes
- Input Policy: Allow
- Apply security group for DROP outgoing SMTP

will this work?

yep. you just need to create the security group at datacenter level. (no need to use it in a datacenter rules).,

then use this security group in each vm rule.