Re: SBS2003 and POP3 / SMTP port forwarding

Tech-Archive recommends: Repair Windows Errors & Optimize Windows Performance

From: Tony Su (anonymous_at_discussions.microsoft.com)
Date: 03/07/04 

Date: Sat, 6 Mar 2004 17:37:57 -0800

Believe Bill's original post was referring to his hardware
appliance firewall, so it's likely SMTP won't work
automatically (but "all depends" as usual).

As for SBServer itself, you're able to send because if ISA
is installed, it's true that no PF exists that denies
outbound SMTP (I feel that ISA should not permit by
default but does based on testing) but the SBS install
seems to also create an outbound SMTP PF permitting by
default.

Haven't personally verified situation using ICF.

Tony Su

>-----Original Message-----
>Actually you don't need to "open" the outbound port 25,
it will go out
>anyway...
>
>does at home where there are no ports on my network open
as per grc.com :-)
>
>Tony Su wrote:
>> BillP,
>> Based on your post I would say that you only need to
open
>> port 25 outbound.
>>
>> Nothing more.
>>
>> Tony Su
>>
>>
>>
>>
>>
>>
>>>-----Original Message-----
>>>What errors are you getting? If you could post back the
>>
>> error message
>>
>>>within the NDR, it can help us to determine what is the
>>
>> root cause.
>>
>>>Are you using SMTP or POP3 Connector, BTW?
>>>
>>>Ray Fong
>>>Microsoft SBS Product Support
>>>
>>>This posting is provided "AS IS" with no warranties,
and
>>
>> confers no rights.
>>
>>>>If you are using SMTP for in and out email you need
port
>>
>> 25 open.
>>
>>>>If you are "pop"ing in and SMTPing out no ports need
>>
>> open on that
>>
>>>>firewall actually.
>>>>
>>>>Rerun the ceicw and ensure you have put in smarthost
or
>>
>> DNS [dns if your
>>
>>>>MX records are set up accordingly]
>>>>
>>>>BillP wrote:
>>>>
>>>>>Sending email to an outside account results in a
>>
>> invalid
>>
>>>>>address message. Email within the SBS2003 LAN works
>>
>> and
>>
>>>>>receiving email from outside ISP accounts works, but
>>>>>sending email to outside accounts fails, destination
>>>>>account not valid.
>>>>>
>>>>>I'm cautious to open the hardware firewall email
>>
>> ports,
>>
>>>>>can someone advise?
>>>>>
>>>>>Do I open the hardware firewall ports for POP3
>>
>> outbound,
>>
>>>>>inbound or both?
>>>>>
>>>>>Do I open the hardware firewall ports for SMTP
>>
>> outbound,
>>
>>>>>inbound or both?
>>>>
>>>>--
>>>>http://www.sbslinks.com/really.htm
>>>>
>>>>
>>>
>>>.
>>>
>
>--
>http://www.sbslinks.com/really.htm
>
>.
>

Relevant Pages

  • Re: Need IPSec Help
    ... It sounds like your ipsec policy is blocking initiated outbound traffic to ports ... port any, destination port 25, protocol 25 for SMTP for instance. ...
    (microsoft.public.win2000.security)
  • Re: I am sick of windows firewall
    ... I use the AnalogX IPsec rules to supplement BlackIce ... need IPsec to stop outbound that BlackIce cannot do by ... attempts on the Windows networking ports even though BI ... supplemental packet filtering solution. ...
    (comp.security.firewalls)
  • Re: security advice (possible hacker activity?)
    ... Well, it's entirely up to you, but usually blocking all ports both outbound ... trojan or worm is installed onto the web server. ... the IIS web server. ...
    (microsoft.public.inetserver.iis.security)
  • Re: security advice (possible hacker activity?)
    ... Well, it's entirely up to you, but usually blocking all ports both outbound ... trojan or worm is installed onto the web server. ... the IIS web server. ...
    (microsoft.public.win2000.security)
  • Re: Question regarding firewalls
    ... In an SBS domain, what firewall ports are really needed for most ... 110 if they use POP3 on external server ... Your clients should need only HTTP and HTTPS outbound, ...
    (microsoft.public.windows.server.sbs)