We had an incident recently where our users were blocked from sending mail because their local IPs (dynamic ISP provided) got on RBL lists.
It makes sense that the dynamic ips should be blocked (email bots and the like), but it seems to me that SMTP-AUTH should trump that (i.e. if a user logs in -- no matter from what ip -- that they should not be blocked).
So is my understanding right? Does SMTP-AUTH *not* trump SMTP blocks? Or have we misconfigured something somewhere?
I'd like the behavior to be such that users can login and send from any IP, but that blocked IPs cannot deliver to local addresses unauthenticated.
Thanks in advance.
(We're currently using SmarterMail 4.3 and considering upgrading to 5)