SMTP Security

From: Rich Grodzicki (rich_at_ovsource.com)
Date: 02/22/05 

Date: Mon, 21 Feb 2005 21:06:57 -0500

Sorry for reposting, but no responses...

-----------------------------------------

Hey, thanks for responding!

I failed to mention in my original post that I need internal AND external
access. Although what you suggested works great for strictly LAN
connections and VPN connections, I am looking for a way to connect to the
POP3 and SMTP servers internally and externally without having to use a VPN
connection.

Thanks!

-Rich

>Hi...
>
>"Rich Grodzicki" <rich@ovsource.com> wrote in message
>news:brCdnTqqW6oNJYXfRVn-vA@wideopenwest.com...
>>I have tried everything I could (I think) on doing this, but I can't seem
>>to get it working quite right. I'm running Server 2003 with AD and I am
>>running the POP3/SMTP service. I set up the SMTP to allow relay to other
>>servers such as yahoo and hotmail. Thus the SMTP server is working and
>>emails to/from yahoo/hotmail work fine. Recently though, I am starting to
>>get bombarded by other computers sending mail via MY SMTP server,
>>extremely
>>limiting my server's performance. Is there any way that I can make it so
>>that users MUST authenticate in order to send mail to any address, but
>>allow mail to come in as well.
>>
>> This is what I attempted and thought would work:
>>
>> Access Control: "Integrated Windows Authentication"
>> Relay: "Only the list below"; "Allow all computers ... authenticate to
>> relay ..."
>> Result:
>> From server to Yahoo: Sucessful
>> From Yahoo to server: Unsucessful - "530 - 5.7.3 Client was not
>> authenticated"
>>
>> Any suggestions on what I should do? Thanks
>>
>> -Rich
>>
>
>By allowing external (to your LAN) computers to relay you are opening up
>your SMTP server to just about anyone who wants to use it - that's not
>good.
>
>OK - here goes, this is how I have mine setup & it works fine.
>
>Open up your IIS services manager and navigate your way to the SMTP access
>properties page then do this:
>
>1) In "Authentication" just have "Anonymous access" checked
>2) In "Connection" select "All except list below" and clear the list box
>3) In "Relay" select "Only the list below" remove everything from the list
>box and then "Add" > "Group of computers" and fill in your LAN details -
>make sure you UNcheck "Allow all computers which....."
>
>HTH
>
>Regards,
>Rod.....
>
>www.manwivavan.co.uk
>
>Get Firefox! - The Best Web Browser Available Today

Relevant Pages

  • Re: Is email-url confirmed for blog-register ?
    ... The ability to reject or accept email based on smtp server IP ... Only in the sense that it combines ineffectiveness with annoyance ... all) of NMSU's mail servers are spam sources (and, of course, you end ... I'd have to look at the responses again to see if anybody ever actually ...
    (comp.os.linux.networking)
  • Does anybody know why mx1.hotmail.com doesnt response correctly? Thanks
    ... In command line, I tried to connect and read responses from hotmail's ... smtp server, and get the ACK very fast, and correct. ... [testhost]$ test.pl gsmtp183.google.com ...
    (comp.lang.perl.misc)
  • Re: Outlook Express - Cant send email
    ... I'm flagged with the message that the SMTP server hasn't responded in 90 ... Since it's stopped again I've tried to reload to no avail. ... Did you read the responses to this post you made? ... You won't fix your problem by reloading the MSFT software because the MSFT ...
    (microsoft.public.windows.inetexplorer.ie6_outlookexpress)
  • Re: E-Mails
    ... Greg Keller ... If you are using a Cox SMTP server on Port 25 and are not connected to Cox's ... to get around the fact that ISPs block port 25 connections to 3rd ...
    (microsoft.public.windows.vista.mail)
  • two strange issues...
    ... Default setup rules for the Edge Firewall ... rules to publish web servers on the internal network. ... I see that it's attempted a few SMTP connections to my SMTP publish. ... SMTP server I use is a spam filter SMTP relay called ASSP. ...
    (microsoft.public.isa)