info.mailtraq.com > Services & TLS/SSL > Access Control Access ControlThis tab, accessed from each Service Properties dialog, controls which clients are permitted to use each instance of each service.  1 Allow any client to connect
This is the default selection and means that Mailtraq permits any client to connect to this service. Mailtraq is normally configured behind a separately configured firewall or router giving access control protection. If that is not the case this option is not recommended unless access by unauthorised clients is physically impossible (i.e. in a closed network which does not permit connections from external networks). 2 Use the addresses below as a FirewallIf this option is selected Mailtraq uses the range of IP addresses entered directly into the Limit access to... list box to determine which clients are permitted to use the service. Note that the firewall is empty by default therefore clients will not be able to use the service until a suitable IP address range is entered. This option, or its successors below it, should be selected in order to prevent specific IP addresses from connecting to this service instances for policy reasons. First, enable all clients to connect using the following wildcard pattern entry:- *.*.*.* then exclude individual IP addresses or address ranges as required by preceding them with a ~ (tilde, ASCII 126) character as follows:- ~192.168.*.*
~10.0.0.1
~10.0.??.* where the first entry blocks the IP address range of 192.168.0.0 - 192.168.255.255, the second entry blocks the single IP address of 10.0.0.1 and the third entry blocks 10.0.10.* - 10.0.99.*, i.e. all IP addresses in that range where the third octet consists of two digits. 3 (2) and Local Area NetworkIf this option is selected Mailtraq uses the range of IP addresses entered directly into the Limit access to... list box followed by the range of IP addresses entered into the LAN tab of the Server Properties dialog to determine which clients are permitted to use the service. The Edit button can be used to display the LAN tab if needed. Note that there are not separate instances of the LAN tab for each SMTP service instance. The Edit button is merely a navigational aid to display that control for ease of reference. (SMTP Service only) 4 (3) and machines recently collecting POP3 mail This option operates exactly as option three but also adds, temporarily for approximately twenty minutes, the IP address of any client authorised to collect POP3 mail from Mailtraq to the list of IP addresses explicitly permitted to connect to this SMTP service instance. Note that this feature can include clients hosted on external networks provided they first access a POP3 mailbox (through the POP3 service firewall and using a valid POP3 mailbox name and associated password) before attempting to send mail via SMTP. Note also that this grants permission through the firewall only. If the connecting client wishes to use Mailtraq to relay mail, the appropriate options on the Relaying Tab must also be enabled. | 
