Changes

From SME Server
Jump to navigationJump to search
Line 100: Line 100:  
Your SME Server has a transparent HTTP and SMTP proxy.
 
Your SME Server has a transparent HTTP and SMTP proxy.
    +
=====HTTP Proxy=====
 
The server's HTTP proxy works to reduce overall uplink usage by caching recently-visited pages. It is transparent to web browsers using this server as their gateway.
 
The server's HTTP proxy works to reduce overall uplink usage by caching recently-visited pages. It is transparent to web browsers using this server as their gateway.
    +
=====SMTP Proxy=====
 
The server's transparent SMTP proxy works to reduce virus traffic from infected client hosts by forcing all outgoing SMTP traffic through this server. If you wish to use an alternate SMTP server, and this server is your gateway to it, disable this proxy.
 
The server's transparent SMTP proxy works to reduce virus traffic from infected client hosts by forcing all outgoing SMTP traffic through this server. If you wish to use an alternate SMTP server, and this server is your gateway to it, disable this proxy.
 +
 +
- Disabled. Clients behind SME Server are allowed to connect to any SMTP
 +
server anywhere in the world (that allow them to).
 +
 +
- Blocked. This forces all SMTP traffic to go through the server and be authenticated.
 +
All attempts to connect to any SMTP Server other than the SME Server will be blocked
 +
and treated as if there is no SMTP server on the other end. (This is the new default)
 +
 +
- Enabled. Any attempt to connect to an SMTP Server other than the
 +
SME Server will be redirected to the SME Server. If someone attempts to connect to an
 +
external smtp server (gmail for example) it will be redirected to the sme
 +
server.  If they then have it set to authenticate to that external server
 +
instead of passing the user/pass to the external server it will pass it to the
 +
sme server and fail.  (This is the old default)
 +
 +
Note: The server (by default) now requires email clients (other than webmail) to authenticate and will not allow auth to occur over an unsecure link. In you email client config you must either connect via ssl/tls or issue a starttls before being able to auth.
    
[[Image:Proxy-settings.png]]
 
[[Image:Proxy-settings.png]]

Navigation menu