Re: SMTP server publishing required for inbound email

yes, that is correct.

but we're talking about SBS, and how SBS implements this facility.
Unless SBS has been 'customised' (ie. non-default installation, wizard
ignorance) the packet filter should work. If the OP has ignored the wizards
and performed manual changes I _still_ believe that the best resolution will
be achieved by bringing the system as close as possible to SBS default,
listen on all interfaces and open a packet filter, NOT implement a
publishing rule.

"Bill Peng [MSFT]" <v-bpeng@xxxxxxxxxxxxxxxxxxxx> wrote in message
news:F3uFrwlOFHA.2944@xxxxxxxxxxxxxxxxxxxxxxxx
> Hi SuperGumby,
>
> Thank you for your input.
>
> I think this depends on the SMTP listener. If it only listens on the
> internal, the Server Publishing rule is
> necessary. If it listens on all (internal and external), only Packet
> Filter is OK.
>
> Bill Peng
> MCSE 2000, MCDBA
> Microsoft CSS Online Newsgroup Support
>
> Get Secure! - www.microsoft.com/security
> =====================================================
> When responding to posts, please "Reply to Group" via your newsreader so
> that others may learn and
> benefit from your issue.
> =====================================================
> This posting is provided "AS IS" with no warranties, and confers no
> rights.
>
> --------------------
>>From: "SuperGumby [SBS MVP]" <not@xxxxxxxxxxx>
>>References: <BF2FE422-D77B-4A41-8807-02AA0D3256E1@xxxxxxxxxxxxx>
>><Kw4YiVbOFHA.3892
> @TK2MSFTNGXA01.phx.gbl>
> <65E4F221-D05E-44B0-8D4E-A89988DE5BC4@xxxxxxxxxxxxx> <g
> $wQv#kOFHA.920@xxxxxxxxxxxxxxxxxxxxx>
> <OHZwoGlOFHA.3444@xxxxxxxxxxxxxxxxxxxx>
>>Subject: Re: SMTP server publishing required for inbound email
>>Date: Wed, 6 Apr 2005 12:47:43 +1000
>>Lines: 151
>>X-Priority: 3
>>X-MSMail-Priority: Normal
>>X-Newsreader: Microsoft Outlook Express 6.00.2900.2527
>>X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2527
>>X-RFC2646: Format=Flowed; Response
>>Message-ID: <##2OPMlOFHA.248@xxxxxxxxxxxxxxxxxxxx>
>>Newsgroups: microsoft.public.windows.server.sbs
>>NNTP-Posting-Host: cpe-144-136-66-228.nsw.bigpond.net.au 144.136.66.228
>>Path: TK2MSFTNGXA01.phx.gbl!TK2MSFTNGP08.phx.gbl!TK2MSFTNGP15.phx.gbl
>>Xref: TK2MSFTNGXA01.phx.gbl microsoft.public.windows.server.sbs:108799
>>X-Tomcat-NG: microsoft.public.windows.server.sbs
>>
>>BTW, until the ISA product development group realise the problem and
>>correct
>>it I'd rather they leave it alone.
>>
>>"SuperGumby [SBS MVP]" <not@xxxxxxxxxxx> wrote in message
>>news:OHZwoGlOFHA.3444@xxxxxxxxxxxxxxxxxxxxxxx
>>> RUBBISH Bill,
>>>
>>> matter of fact, ISA2000 SMTP publishing BREAKS SMTP because it
>>> doesn't
>>> understand a number of ESMTP commands. Most MSFT and ISA proponents will
>>> blame the (mostly Unix) remote mail systems because upon encountering an
>>> incomplete ESMTP conversation they should 'fall back' to standard SMTP
>>> but
>>> the fact of the matter is ISA2000 does not have the predefined command
>>> structure in the SMTP filter to correctly handle ESMTP commands.
>>>
>>> By default the SBS Exchange SMTP service listens on all addresses and
>>> a
>>> packet filter is used to allow external access to the service.
>>> Unfortunately I can't suggest why the OP is experiencing a problem and
>>> therefore cannot suggest a solution.
>>>
>>> Implementing an SMTP server publishing rule is an option not
>>> implemented on most SBS boxes.
>>>
>>> "Bill Peng [MSFT]" <v-bpeng@xxxxxxxxxxxxxxxxxxxx> wrote in message
>>> news:g$wQv%23kOFHA.920@xxxxxxxxxxxxxxxxxxxxxxxx
>>>> Hi,
>>>>
>>>> Yes, the Packet Filters are not able to solve the problem and you must
>>>> use the server publishing rule.
>>>>
>>>> Any questions, let's get in touch.
>>>>
>>>> Bill Peng
>>>> MCSE 2000, MCDBA
>>>> Microsoft CSS Online Newsgroup Support
>>>>
>>>> Get Secure! - www.microsoft.com/security
>>>> =====================================================
>>>> When responding to posts, please "Reply to Group" via your newsreader
>>>> so
>>>> that others may learn and
>>>> benefit from your issue.
>>>> =====================================================
>>>> This posting is provided "AS IS" with no warranties, and confers no
>>>> rights.
>>>>
>>>> --------------------
>>>>>Thread-Topic: SMTP server publishing required for inbound email
>>>>>thread-index: AcU52+PkCQNrTD16TY65p95EswnOvw==
>>>>>X-WBNR-Posting-Host: 66.92.236.204
>>>>>From: =?Utf-8?B?TkZD?= <NFC@xxxxxxxxxxxxxxxxxxxxxxxxx>
>>>>>References: <BF2FE422-D77B-4A41-8807-02AA0D3256E1@xxxxxxxxxxxxx>
>>>>><Kw4YiVbOFHA.3892
>>>> @TK2MSFTNGXA01.phx.gbl>
>>>>>Subject: RE: SMTP server publishing required for inbound email
>>>>>Date: Tue, 5 Apr 2005 05:35:03 -0700
>>>>>Lines: 63
>>>>>Message-ID: <65E4F221-D05E-44B0-8D4E-A89988DE5BC4@xxxxxxxxxxxxx>
>>>>>MIME-Version: 1.0
>>>>>Content-Type: text/plain;
>>>>> charset="Utf-8"
>>>>>Content-Transfer-Encoding: 7bit
>>>>>X-Newsreader: Microsoft CDO for Windows 2000
>>>>>Content-Class: urn:content-classes:message
>>>>>Importance: normal
>>>>>Priority: normal
>>>>>X-MimeOLE: Produced By Microsoft MimeOLE V6.00.3790.0
>>>>>Newsgroups: microsoft.public.windows.server.sbs
>>>>>NNTP-Posting-Host: TK2MSFTNGXA03.phx.gbl 10.40.1.29
>>>>>Path: TK2MSFTNGXA01.phx.gbl!TK2MSFTNGXA03.phx.gbl
>>>>>Xref: TK2MSFTNGXA01.phx.gbl microsoft.public.windows.server.sbs:108573
>>>>>X-Tomcat-NG: microsoft.public.windows.server.sbs
>>>>>
>>>>>I thought the SMTP packet filter handled incoming mail, and a server
>>>>>publishing rule is not normal (it is not, I had to add it manually).
>>>>>
>>>>>"Bill Peng [MSFT]" wrote:
>>>>>
>>>>>> Hi,
>>>>>>
>>>>>> Thank you for posting here.
>>>>>>
>>>>>> Actually the SMTP service is listening on the internal interface and
>>>>>> if
>>>>>> you want to receive the inbound
>>>>>> SMTP emails, you have to create a server publishing rule in ISA to
>>>>>> publish it.
>>>>>>
>>>>>> Based on my knowledge, there is no work around except using POP3
>>>>>> Connector for receiving emails.
>>>>>>
>>>>>> If you have any questions or concerns, please feel free to post back.
>>>>>>
>>>>>> Bill Peng
>>>>>> MCSE 2000, MCDBA
>>>>>> Microsoft CSS Online Newsgroup Support
>>>>>>
>>>>>> Get Secure! - www.microsoft.com/security
>>>>>> =====================================================
>>>>>> When responding to posts, please "Reply to Group" via your newsreader
>>>>>> so that others may learn and
>>>>>> benefit from your issue.
>>>>>> =====================================================
>>>>>> This posting is provided "AS IS" with no warranties, and confers no
>>>>>> rights.
>>>>>>
>>>>>> --------------------
>>>>>> >Thread-Topic: SMTP server publishing required for inbound email
>>>>>> >thread-index: AcU5V8IV8PxZW6O6QvGgm24ZPFX34A==
>>>>>> >X-WBNR-Posting-Host: 66.92.236.204
>>>>>> >From: =?Utf-8?B?TkZD?= <NFC@xxxxxxxxxxxxxxxxxxxxxxxxx>
>>>>>> >Subject: SMTP server publishing required for inbound email
>>>>>> >Date: Mon, 4 Apr 2005 13:49:13 -0700
>>>>>> >Lines: 8
>>>>>> >Message-ID: <BF2FE422-D77B-4A41-8807-02AA0D3256E1@xxxxxxxxxxxxx>
>>>>>> >MIME-Version: 1.0
>>>>>> >Content-Type: text/plain;
>>>>>> > charset="Utf-8"
>>>>>> >Content-Transfer-Encoding: 7bit
>>>>>> >X-Newsreader: Microsoft CDO for Windows 2000
>>>>>> >Content-Class: urn:content-classes:message
>>>>>> >Importance: normal
>>>>>> >Priority: normal
>>>>>> >X-MimeOLE: Produced By Microsoft MimeOLE V6.00.3790.0
>>>>>> >Newsgroups: microsoft.public.windows.server.sbs
>>>>>> >NNTP-Posting-Host: TK2MSFTNGXA03.phx.gbl 10.40.1.29
>>>>>> >Path: TK2MSFTNGXA01.phx.gbl!TK2MSFTNGXA03.phx.gbl
>>>>>> >Xref: TK2MSFTNGXA01.phx.gbl
>>>>>> >microsoft.public.windows.server.sbs:108383
>>>>>> >X-Tomcat-NG: microsoft.public.windows.server.sbs
>>>>>> >
>>>>>> >SBS2k3 with ISA and Trend CSM - I cannot receive inbound email
>>>>>> >unless
>>>>>> >I add a
>>>>>> >server publishing rule for SMTP (which I do not want because then I
>>>>>> >become a
>>>>>> >relay unless I delete the 127.0.0.1). Have run CEICW many times, no
>>>>>> >change,
>>>>>> >it runs successfully but unless I have the server rule no inbound
>>>>>> >mail?
>>>>>> >There is an SMTP OUT packet filter, and an SMTP IN filter, both
>>>>>> >using
>>>>>> >port
>>>>>> >25 and All ports (depending on whether it is in or out).
>>>>>> >
>>>>>> >Any ideas?
>>>>>> >
>>>>>>
>>>>>>
>>>>>>
>>>>>
>>>>
>>>>
>>>
>>>
>>
>>
>>
>
>


.

Relevant Pages

  • SMTP Errors - Black Hole Router
    ... It's been awhile, but several months ago, we setup a SBS 2003 with Exchange. ... tried all kinds of setting changes on the server, with our ISP, etc., etc. ... Instead of responding back that the packet needs to be ...
    (microsoft.public.windows.server.sbs)
  • Re: Event 5501
    ... sbs 2000 or sbs 2003? ... >I continuously get the following error in the event log. ... > causing any problems except for the 10 extra log entries per day. ... > DNS Server encountered bad packet from IP Address. ...
    (microsoft.public.backoffice.smallbiz2000)
  • Re: Event 5501
    ... This is SBS 2000. ... did some looking through the DNS but didn't see any references to the IP ... > causing any problems except for the 10 extra log entries per day. ... > DNS Server encountered bad packet from IP Address. ...
    (microsoft.public.backoffice.smallbiz2000)
  • Re: Event 5504 / invalid domain name in packet / doubleclick.net
    ... > I am getting a raft of event 5504 on my SBS 2003 premium server: ... The packet will be rejected. ... The event data contains the DNS ... > (surprise, surprise) as the culprit. ...
    (microsoft.public.windows.server.sbs)
  • Re: Help With DNS Through VPN
    ... I created a packet filter as you described, ... >> Must be routing everything but DNS queries. ... > So in this case that would be the external IP address of the SBS box. ... > server _behind_ your SBS then you need a server ...
    (microsoft.public.isa)