Hello,
We have recently started trying out Azure - and host a VM with email server.
We have to use Azure provided smtp relay - which in itself is a security risk. For instance we had raised a support ticket and the technician was able to send email fully authenticated email from our domain. I understand we can request to allow SMTP traffic from the public IP of VM - is this correct ? and how can we do it?
Meanwhile we started to receive SMTP port scans / nmap type scans looking for open relay. We have raised ticket with Microsoft CERT but have not heard anything back. References are:
Microsoft CERT Report 78f5149d-2f19-4284-bdab-ed441563f049 Received
CERT# 78f5149d-2f19-4284-bdab-ed441563f049 escalated to [#A3218176]
CERT# 78f5149d-2f19-4284-bdab-ed441563f049 escalated to [#SIR1045250
Overnight we had 11 attempts from 11 Microsoft IPs which is an escalation. Please assist.
BR AM