Thanks for your suggestion on this Omar. I've requested a trial of this service so I can test it in-house and document how this works currently. Once I have that I'd be happy to escalate this as a feature request for you. 

We are using only Webmail, EAS and EWS
Here you have our SMTP report on August:

Greylisted from April (Weekly)

IDS

Thanks Omar. I am curious how the IPBAN system integrates with SmarterMail though, can you provide details on that? Is it updating your blacklists automatically?

The software reads the logs and use the errors.

This is our SMTP-in from January 1st
https://drive.google.com/file/d/1ZZa5Jwyok3DDYyYkeAWYKKZh4EOu9wjr/view?usp=sharing

IPBAN interfase page 1
https://drive.google.com/file/d/1x1w06emXCVjIsZisr9nP0o6cGGRSeGi1/view?usp=sharing

IPBAN interfase page  2
https://drive.google.com/file/d/1EaqNjksmLJ7U26IHR3BJrhZe5epr69k6/view?usp=sharing

IPBAN interfase page  3
https://drive.google.com/file/d/1lAMPU8OnpvN6LLWJLt1jpdzI6_HPBZN7/view?usp=sharing

There are more info. I think this will be useful.
I also made a simple VBA soft (using EXCEL VBA) to read the SMTP logs.

This is the last logs set (15 days) (week by week this is smaller because we almost don't have attackers)
https://drive.google.com/file/d/1rm1dKNZSYnnW5jLpKX0rizLd81LkYhBu/view?usp=sharing

Here you have the BLACKLIST build using the my logs interpretation:
https://drive.google.com/file/d/1VnsA4JG_FliTW0VCHJIEQS1mDYcF4gAk/view?usp=sharing

I think IPBAN use something similar, but in real time. 

So... it does exactly what SmarterMail already does? Reads the SM log files for invalid login attempts? Though, SM doesnt need to read the logs since it's running its services, it can handle them as the invalid attempts come in.

Yes, but with this you can auto load them as BLACKLIST to all server
The attackers can't find you again. They remain out of your server.

if you look this graph, this is clean without blocked connections. We don't have almost attackers. The server is only working for our company.

I personally dont see the point of integration of another product into SM that does something SM already does, maybe I am missing something.

Our experience with IPBAN PRO having used it extensively prior to upgrading the Windows Server operating systems and letting fall through the cracks is that SmarterMail does a very good job with its IDS but that it does take up resources detecting and logging.  We recently took the time to reconfigure our IPBANPRO licenses on the upgraded servers during very high volume attacks on a SmarterMail and other servers that were impacting many things, including SmarterMails' resource utilization for both CPU and memory.  With IPBANPRO enabled and setting up the blocking of malicious connections using the Windows Filtering Platform prior to SmarterMail needing to deal with them, there was an almost immediate reduction falling rapidly to fully defended as the malicious addresses and the ones they hopped over to were detected and blocked.  I haven't considered how and to what benefit some sort of direct integration into SmarterMail would have but definitely agree that IPBANPRO in concert with the Windows Filtering Platform is a valuable addition.  You can get some feel for it by installing the trial of the personal edition.  It will not require a reboot or restart of the SmarterMail services.  One difference between the Personal Edition and the DataCentre edition is that the Personal instances live in isolation and do not share their experience and block lists with other servers in your infrastructure via a central management interface.  In our rapid need to get it up and running again this is all we installed initially as it took only a couple of minutes and didn't require setting up the admin server as a web site. 

We use it on all our public facing servers - the customization for log based sensing makes it versatile enough to handle all our services we expose -- and it definitely has an effect on malicious traffic and the subsequent loads.

There are a few features that could use improvement but overall worth it on price vs. value --