Another issue that I was having is the email servers abuse detection was shooting me in the foot because when it blacklisted any abusers IP, it was the Xeams IP that got blacklisted. When you use Xeams, you have to literally disable all spam and abuse detection from the email server for incoming activity because all incoming to the email server actually comes from Xeams, and if you whitelist the Xeams IP, then you become an open relay.

So, since Xeams doesn't handle all types of abuse or IDS, you have to build such detections in a firewall. I use pfsense firewall.

My recommendation is a three step system for incoming email.

1. Block abuse at the firewall such as DDOS or brute force attacks and country blocking

2. Block Spam at Xeams

3. Deliver mail to the email server.

Comments or suggestions anyone?