[Kerio 4.x] Rule for GMail

Author	All Replies
Qwerky join:2006-05-24 Adanac	[Kerio 4.x] Rule for GMail Hello All, I have this rule for my e-mail client: Permit e-mail client TCP Outbound Local Port 1024-4999 Remote Port 110, 25, 995, 465, 587 E-Mail Servers IP Group. The E-Mail Servers IP Group contains the IPs of my e-mail servers (duh), including GMail. But the GMail IPs often vary throughout a wide range within the 64.233.x group. Google owns 64.233.160.0 - 64.233.191.255. Is it safe to allow that entire range? ADVthanksANCE -- Studies show that three out of five people, aren't the other two. -- Qwerky
Qwerky join:2006-05-24 Adanac	to forum · permalink · 2006-05-29 02:48:18 · (locked)
Graham1 join:2003-01-31	Personally, I would allow for any address. It will give you less hassle in the long run. I tend to only use ip groups for windows services such as DHCP and DNS. If you would still prefer to use ip groups, then enable logging. This should give you a quite a few ip addresses over time to add into the group.
Graham1 join:2003-01-31	to forum · permalink · 2006-06-14 13:13:27 · (locked)
Qwerky join:2006-05-24 Adanac	Hi Graham, thanks for the reply. After the initial burn-in period (with a flurry of activity), things seem to be settling down quite nicely. I tend to use IP groups for almost everything. When a new group is formed, it takes a little while to accumulate the required IPs, and after that it's pretty low maintenance. Since posting this question, GMail gave me one more new IP, for a total of six, and it's been quiet ever since. -- Statistically, five out of four people have trouble with fractions. -- Qwerky
Qwerky join:2006-05-24 Adanac	to forum · permalink · 2006-06-14 18:26:12 · (locked)
Graham1 join:2003-01-31	Glad you got things sorted out . Did you manage to get a list of ip addresses for windows update?
Graham1 join:2003-01-31	to forum · permalink · 2006-06-14 18:39:43 · (locked)
Qwerky join:2006-05-24 Adanac	reply to Qwerky Hi Graham, my Windows Update IP group currently contains 20 entries; six of those are ranges. It seems that each day one more will be added, either as a new entry or an expansion of a range. They all belong to only about eight different company names, including MS and Hotmail. Others include Abovenet Communications, Akamai Technologies, Level 3 Communications, Qwest Communications, and Savvis. I suspect, though, that the exact sources will vary depending on the user's country. This is by far the largest IP group I have. I haven't found it to be too bad updating the list about once a day, but if I ever do, then I guess I could just expand them to include the entire range owned by each company, and not be bothered again. -- Qwerky
Qwerky join:2006-05-24 Adanac	to forum · permalink · 2006-06-14 21:40:39 · (locked)


Wednesday, 25-Nov 07:11:18	Terms of Use \| Privacy Policy \| Hosting by www.nac.net - DSL,Hosting & Co-lo \| feedback \| contact over 10 years online! © 1999-2009 dslreports.com. page compression OFF