Connect. Communicate. Collaborate. Securely.

Home » Kerio User Forums » Kerio Connect » Denying outside access to Kerio Mailserver (Need to be able to deny access to Kerio Mailserver if outside company)
  •  
puffywulf

Messages: 1
Karma: 0
Send a private message to this user
Is there a way to prevent outside access to our mailserver. I only want a range of IPs to access the mailserver and no one else. The reason I'm doing this is for security reasons (Passwords may not be strong enough so that hackers are guessing our passwords and able to access user account e-mail). If possible, I only want to be able to access our mailserver/e-mail only when the person is actually onsite at our company.
  •  
Pavel Dobry (Kerio)

Messages: 5245
Karma: 251
Send a private message to this user
There are at least 3 options:

1. Configure your firewall to block/allow certain IP adrresses.
2. Configure KMS services to listen only on certain (private) IP addresses.
3. Configure KMS services and define list of IP addresses for each service.

It is described in the manual: http://www.kerio.com/manual/kms/en/sect-servicesparams.html
  •  
kanedavid

Messages: 10
Karma: 0
Send a private message to this user
Why not use some sort of VPN connection. Perhaps blocking IMAP/POP/HTTPS access to the mail server on your firewall, and using VPN on each staff/users computer so they can access mail when out of the office?
  •  
dvsmark

Messages: 12
Karma: 0
Send a private message to this user
puffywulf wrote on Sat, 30 May 2009 21:42

Is there a way to prevent outside access to our mailserver. I only want a range of IPs to access the mailserver and no one else. The reason I'm doing this is for security reasons (Passwords may not be strong enough so that hackers are guessing our passwords and able to access user account e-mail). If possible, I only want to be able to access our mailserver/e-mail only when the person is actually onsite at our company.


I have asked for the same functionality, however it would be VERY helpful to have the granularity of limiting outside access by protocol by user -i.e, by allowing access for sales people via https but excluding others

  •  
jshaw541

Messages: 471
Karma: 0
Send a private message to this user
Kerio_pdobry wrote on Sun, 31 May 2009 03:19

There are at least 3 options:

1. Configure your firewall to block/allow certain IP adrresses.
2. Configure KMS services to listen only on certain (private) IP addresses.
3. Configure KMS services and define list of IP addresses for each service.

It is described in the manual: http://www.kerio.com/manual/kms/en/sect-servicesparams.html



And also been discussed in the forums a dozen times. This is where the Search button really comes in handy and saves you time, having to wait for someone to respond to your post. Smile

Kerio MailServer 6.7.1 w/AD
Windows Server 2003 SP 1
Dell PowerEdge 2850 (Dual Xeon 3.2ghz and 2 GB RAM)
~1300 users
~1000+ concurrent IMAPS connections
iPhone users
Outlook 2007 KOFF users
Apple iCal 10.5/10.6 users
Previous Topic: Multiple Certs
Next Topic: SMTP AUthentication Issue
Goto Forum:
  


Disclaimer:
Kerio discussion forums are intended for open communication between forum members and may contain information and material posted by members which may be useful in learning about Kerio products. The discussion forums are not intended to provide technical support for any specific product. Any information implied or expressed in the discussion forums is that of the posting member. Kerio is in no way responsible for the information posted in the forums, or its accuracy. Kerio employees may participate in the discussions, but their postings do not represent an offical position of the company on any issues raised or discussed. Kerio reserves the right to monitor and maintain the forums to promote free and accurate exchange of information.

Current Time: Sun Nov 19 17:23:12 CET 2017

Total time taken to generate the page: 0.00462 seconds
.:: Contact :: Home ::.
Powered by: FUDforum 3.0.4.