Easy way to deal with Google SMTP (1e100.net)?

cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Easy way to deal with Google SMTP (1e100.net)?

L2 Linker

Anybody found an easy way to deal with allowing SMTP traffic to Google but nowhere else.  The problem here is 1e100.net IP space is all over the place (since it's Google's world wide distrubted cloud) and FQDN address object type, when it even works [bugs all over the place with that code], doesn't allow wildcares.


Really need a day to say something like "allow SMTP to *.1e100.net" because not tying to continually check and update my manual rules for google every time they expand / contract their IP space which they seem to do regularly and I'm also not trying to allow STMP to the world even from the source address in question.

 

Edit: Just to be clear here for clarification I'm looking to white list these, not black hence the problem

10 REPLIES 10

L6 Presenter

I'm assuming it's not something as simple as gmail, but you're talking about SMTP traffic that's being hosted in Google CDN space?

Cyber Elite
Cyber Elite

Hello,

I think blocking the application would be one approach to this. If you block the application gmail, this should block all traffic to google mail servers.

 

Hope this helps.

Correct; google 1e100.net as *.*.*.26 and *.*.*.27 addresses from thousands of blocks and they expand/contrast daily.  Not really an issue for pre-defined google apps signatures but for raw SMTP this is an issue.

You're trying to 'blacklist' "Google" and application "SMTP," this will probably be almost impossible to maintain.  

 

In general I would think you would want to whitelist what from your company can SMTP out, and it probably would be going to a specific destination or resource.  it it possible to do a whitelist, which would inherently block SMTP anywhere else?

Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!