ZyXEL Communications 5 Series User Manual

ZyWALL 5/35/70 Series User’s Guide

Chapter 15 Anti-Spam

291

From, To

Select the directions of travel of packets that you want to check. Select or
clear a row or column’s first check box (with the interface label) to select or
clear the interface’s whole row or column.

For example, you could have the ZyWALL check packets traveling in from
the WAN to the interface your e-mail server is on. For example, From WAN1
To DMZ, or From WAN2 To DMZ.

From LAN To LAN means packets traveling from a computer on one LAN
subnet to a computer on another LAN subnet via the LAN interface of the
ZyWALL. The ZyWALL does not check packets traveling from a LAN
computer to another LAN computer on the same subnet.

From WAN1 To WAN1 means packets that come in through the WAN 1
interface and the ZyWALL routes back out through the WAN 1 interface.

From VPN means traffic that came into the ZyWALL through a VPN tunnel
and is going to the selected “to” interface. For example, From VPN To LAN
specifies the VPN traffic that is going to the LAN or terminating at the
ZyWALL’s LAN interface. The ZyWALL checks the traffic after decrypting it.

To VPN is traffic that comes in through the selected “from” interface and goes
out through any VPN tunnel. For example, From LAN To VPN specifies the
traffic that is coming from the LAN and going out through a VPN tunnel. The
ZyWALL checks the traffic before encrypting it.

From VPN To VPN means traffic that comes in through a VPN tunnel and
goes out through (another) VPN tunnel. This is the case when the ZyWALL is
the hub in a hub-and-spoke VPN. The ZyWALL checks the traffic after
decrypting it (before encrypting it again).

Note: The VPN connection directions apply to the traffic going

to or from the ZyWALL’s VPN tunnels. They do not apply
to other VPN traffic for which the ZyWALL is not one of
the gateways (VPN pass-through traffic).

Action for Spam Mails

Use this section to set how the ZyWALL is to handle spam mail.

Phishing Tag

Enter a message or label (up to 16 ASCII characters) to add to the mail
subject of e-mails that the anti-spam external database classifies as
phishing.

Note: You must register for and enable the anti-spam external

database feature in order for the ZyWALL to use this tag
(see Chapter 10 on page 185 for details).

Spam Tag

Enter a message or label (up to 16 ASCII characters) to add to the mail
subject of e-mails that the ZyWALL classifies as spam.

Forward SMTP & POP3
mail with tag in mail
subject

Select this radio button to have the ZyWALL forward spam e-mail with the tag
that you define.

Even if you plan to use the discard option, you may want to use this initially
as a test to check how accurate your anti-spam settings are. Check the e-
mail the ZyWALL forwards to you to make sure that unwanted e-mail is
marked as spam and legitimate e-mail is not marked as spam.

Discard SMTP mail.
Forward POP3 mail with
tag in mail subject

Select this radio button to have the ZyWALL discard spam SMTP e-mail. The
ZyWALL will still forward spam POP3 e-mail with the tag that you define.

Table 84 SECURITY > ANTI-SPAM > General

LABEL

DESCRIPTION