Scope:All Email Security Gateways, all firmware versions.
What is Rate Control?
The Email Security Gateway Rate Control feature protects the system from spammers or spam-programs (also known as "spam-bots") that send large amounts of email to the server in a small amount of time. Rate Control is configured on the BLOCK/ACCEPT > Rate Control page.
As part of the Connection Management Layer, the Rate Control mechanism counts the number of connections to the Email Security Gateway in a half hour period and compares that number to the Rate Control threshold, which is the maximum number of connections allowed from any one IP address in this half-hour time frame. If the number of connections from a single IP address exceeds the Rate Control threshold within the half hour period, the Email Security Gateway will defer any further connection attempts from that particular IP address until the next half hour time frame and log each attempt as deferred in the Message Log with a Reason of 'Rate Control'.
In this case, for each message deferred, the sender will receive a 4xx level error message instructing the mail server to retry after a predefined time interval. Well-behaving mail servers act upon the defer message and will try sending the message again later, while email from large volume spammers will not retry sending the email again.
When does Rate Control take effect?
When Rate Control is first enabled on the Email Security Gateway, or after a change is made to the Rate Control threshold, five (5) unique IP addresses must connect before Rate Control is invoked. This is to take into account that you may have another appliance receiving email (i.e., a front-end Mail Transfer Agent (MTA) or a trusted forwarder) before the Email Security Gateway. Once 5 or more IP addresses have made connections to the Email Security Gateway, it indicates that mail is also coming in from other outside sources and rate control should be applied.
How do I exempt a server from Rate Control?
You can exempt trusted IP addresses from Rate Control by adding a trusted IP address to the BLOCK/ACCEPT > Rate Control > Rate Control Exemption/IP range list. Also, any IP address that you enter as a trusted forwarder on the BASIC > IP Configuration page will be exempted from Rate Control.
How does Rate Control impact outbound traffic?
Please reference Solution #00004426
Link to this page: