CONFIGURING


Restricting users from sending Internet mail
You can control the transfer of outbound mail from your organization to the Internet.

About this task

Domino® provides two methods for restricting outbound Internet mail:


Setting outbound sender controls

About this task

The outbound sender controls let you specify who can and cannot send mail to the Internet. The controls are implemented in two sets of Allow and Deny lists:


Domino sends a restriction failure message to restricted users who attempt to send outbound mail. You can customize the text of mail failure messages.

The Outbound sender controls are not intended to restrict SMTP relay access. To configure relay restrictions, use the Inbound Relay Controls on the Router/SMTP - Restrictions and Controls -> SMTP Inbound Controls tab of the Configuration Settings document.

Note: SMTP can resolve names for group types of Mail-only or Multi-purpose. When you create or modify the SMTP and Router settings in the Configuration Settings document, be sure to enter group names that have a group type of Mail-only or Multi-purpose. These groups must be in the primary directory. This applies to settings on the Restrictions tab, the SMTP Inbound Controls tab, and the SMTP Outbound Controls tab.

Procedure

1. Make sure you already have a Configuration Settings document for the server(s) to be configured.

2. From the Domino Administrator, click the Configuration tab and expand the Messaging section.

3. Click Configurations.

4. Select the Configuration Settings document for the mail server or servers you want to administer, and click Edit Configuration.

5. Click the Router/SMTP -> Restrictions and Controls -> SMTP Outbound Controls tab.

6. Complete these fields and then click Save & Close:


7. The change takes effect after the next Router configuration update. To put the new setting into effect immediately, reload the routing configuration.

What to do next

This outbound sender controls are not intended to control relaying. For information on using Domino's inbound relay controls, see the related topics.

Setting outbound recipient controls

About this task

The Outbound recipient controls let you specify the Internet domains, and host names users are allowed to and denied from sending mail to. The controls consist of a set of pair of lists, one specifying the Internet domains or host names to which users can send mail and another listing the domains and host names to which users cannot send mail.

Procedure

1. Make sure you already have a Configuration Settings document for the server(s) to be configured.

2. From the Domino Administrator, click the Configuration tab and expand the Messaging section.

3. Click Configurations.

4. Select the Configuration Settings document for the mail server or servers you want to administer, and click Edit Configuration.

5. Click the Router/SMTP -> Restrictions and Controls -> SMTP Outbound Controls tab.

6. Complete these fields and then click Save & Close:


7. The change takes effect after the next Router configuration update. To put the new setting into effect immediately, reload the routing configuration.

Results

For security reasons, if there is a conflict between the two fields for a given setting, entries in the Deny field take precedence. For example, if renovations.com appears in both the Allow messages only to recipients in the following Internet domains or host names field and the corresponding Deny messages field, Domino denies messages sent to renovations.com. Be careful not to have the same entry in an Allow field and a Deny field for the same setting.

Domino checks each address to see if it is an Internet address or a Notes address. The Router then applies the restrictions specified for that type of address.

If you are entering multiple names in a field, consider creating a group and entering the group name in the field. Domino expands the group into a list of members. If you update the group list in this document or edit the group members in the Domino Directory, changes do not take effect immediately.

Related concepts
Restricting outbound mail routing

Related tasks
Customizing the text of mail failure messages
Preventing unauthorized SMTP hosts from using Domino as a relay
Creating a Configuration Settings document
Recalculating the server's routing table
Supporting outbound SMTP extensions