Re: Strange relay issue

Tech-Archive recommends: Fix windows errors by optimizing your registry

From: "Gerry van Cleef" <gtvc@xxxxxxxxxxxxxxx>
Date: Wed, 1 Mar 2006 13:54:49 +0100

Hi,

"Rich Matheisen [MVP]" <richnews@xxxxxxxxxxxxxxxxxxxxx> schreef in bericht
news:gbv902tui1lo8g18v8t0ua2gipqa1pao7m@xxxxxxxxxx

"Gerry van Cleef" <gtvc@xxxxxxxxxxxxxxx> wrote:

It sure sounds like you've allowed unauthenticated relaying by adding
IP addresses to the "Relay..." button on the "Access" tab of your SMTP
Virtual Server.

Correct, some servers are added in that list. The box allow relay after
succesfull authentication regardless of the list above is unchecked.

SMTP doesn't care about when a server was added to your LAN.

As mentioned from the outside there are no problems, but comming to think
of
it, our mail goes first to a server that does anti-virus/spam and
connection
filtering and then it gets forwarded by smtp to the exchange server. That
first server was there from the beginning so that could explain why things
go well from the outside.

No, what would explain it is that you've allowed certain machines to
do things and denied others. That may be because the ones that work
are allowed to do things because you've added their IP addresses to
the SMP Virtual Server, or maybe because they're authenticating with
your server and the others are not.

But that still doesnt explain why it accepts for 2 out of 3 domains smtp
sessions internally and the 3rd domain gets rejected.

But im still looking, btw, as far i can see there are no strange things to
see in the smpt log.

You don't see any AUTH commands? If not, then check the "Relay..."
button.

There are no auth commands, i will paste a bit of the log:

This is a session from internal machine on a domain it accepts:

2006-03-01 12:45:19 192.168.200.114 xxxxxx SMTPSVC1 VNOGCOM 192.168.200.171
0 HELO 250 58 12 SMTP -
2006-03-01 12:45:19 192.168.200.114 xxxxxx SMTPSVC1 VNOGCOM 192.168.200.171
0 MAIL 250 43 31 SMTP -
2006-03-01 12:45:19 192.168.200.114 xxxxxx SMTPSVC1 VNOGCOM 192.168.200.171
0 RCPT 250 0 45 SMTP -
2006-03-01 12:45:19 192.168.200.114 xxxxxx SMTPSVC1 VNOGCOM 192.168.200.171
0 DATA 250 127 1220 SMTP -
2006-03-01 12:45:19 192.168.200.114 xxxxxx SMTPSVC1 VNOGCOM 192.168.200.171
0 QUIT 240 77 4 SMTP -

This is a session from same internal machine on a domain it rejects but
according to recipient policy should be accepted.

2006-03-01 12:45:38 192.168.200.114 xxxxxx SMTPSVC1 VNOGCOM 192.168.200.171
0 HELO 250 58 12 SMTP -
2006-03-01 12:45:38 192.168.200.114 xxxxxx SMTPSVC1 VNOGCOM 192.168.200.171
0 MAIL 250 43 31 SMTP -
2006-03-01 12:45:38 192.168.200.114 xxxxxx SMTPSVC1 VNOGCOM 192.168.200.171
0 RCPT 550 0 29 SMTP -
2006-03-01 12:45:38 192.168.200.114 xxxxxx SMTPSVC1 VNOGCOM 192.168.200.171
0 QUIT 240 77 4 SMTP -

( xxxxxx is information deleted for privacy reasons )

Tx for your time ( again:-) )

Gerry

.

Follow-Ups:
- Re: Strange relay issue
  - From: Rich Matheisen [MVP]

References:
- Re: Strange relay issue
  - From: Rich Matheisen [MVP]

Prev by Date: Re: New User - Outlook Error
Next by Date: Re: NAV exchange
Previous by thread: Re: Strange relay issue
Next by thread: Re: Strange relay issue
Index(es):
- Date
- Thread