Link to home
Start Free TrialLog in
Avatar of Jkipkangor
Jkipkangor

asked on

SMTP, POP Mail on SBS 2008

I have this scenario...
A printer on the network which should have a send gateway for mailing scan jobs..and i have SBS 2008 with exchange installed..
The printer gets/finds the send gateway as my exchange server but the sending fails because of SMTP authentication errors
I have tried to create a user who can emulate and POP mail using Outlook and the same authentication error occurs...
I have tried all the login options with no success
Avatar of Cris Hanna
Cris Hanna
Flag of United States of America image

you'll need to setup a specific receive connector in Exchange to all anonymous relay from a specific IP address

http://technet.microsoft.com/en-us/library/bb232021(EXCHG.80).aspx
A new receive connector should not be nessecary.  The printer is not an anonymous user if your trying to authenticate with a AD account.

Why do you require the Printer to be able to POP the exchange?  You mention you only require to scan documents to exchange, I would disable pop.

Create yourself a generic user called "Scanner" for the purposes of authentication.  Specify "Domain\Scanner" as the username unless there is a separate

At this point I don't know if your exchange receives e-mail by SMTP externally?  So also check your firewall  that SMTP 25 is open (Control Panel -> Windows Firewall -> Allow a Program through Windows Firewall)

A quick test to make sure it is not being blocked "Telnet Servername 25" from any internal network PC.

I hope this gives you something to work with.
I suspect that Mr Turner has not done much work with SBS 2008 based on several statements.
Exchange does not natively support "basic" authenication.  This is different from SBS 2003 when sending from these multifunction machines was much easier.

With Exchange 2007, even more of an effort was made to insure it did not become an open relay.   So the default receive connector will not allow the connection.

The new receive connector allows anonymous submittal from ONLY the internal IP of the scanner/fax machine and therefore it will not be an open relay.

Because of the nature of SBS, the Windows Firewall (for internal connections) is open for port 25
Whether the external firewall is forwarding port 25 to allow for receipt of external mail has no effect on receiving mail from internal resources
Cris what are you describing is SBS Internet Recieve connector, for incoming e-mail.  Which all of what you just said is correct.  The changes were there to stop open relay.  Another receive connector is still not needed.

There is allready a default internal SBS2008 recieve connector, that will accept basic or AD authentication from any IP within the network other than the default gateway.

I'm fully aware that SMTP is open by default, what I'm not doing is making the presumption that it is open as it has not been made clear yet if SMTP is used for anything else incoming at this point, internal or external.  This is why I have asked for a simple telnet test of Exchange.  Which will also tell me if the default SBS2008 is functioning correctly.

There is also a third SMTP recieve connector, specificly for the built in POP3 connector to transfer to.  A third party POP collector would have to use the default SMTP receive connector.

Please don't make assumptions about what I am and am not familiar with.  It would also help if you read a comment as I was not suggesting anonymous access in any case.
SMTP.JPG
Avatar of Jkipkangor
Jkipkangor

ASKER

Thanks so much guys; after going through all the suggestions, I finally succeeded by creating a new connector..
Anonymous connections to my local server IP:25 works well now but I think it opens up for spam, what do you guys think?
Another reason why I open up smtp is that apparently users in our organization 'like' using Gmail import mail option to create copies of mails, works fine now
I still have a problem with certificates though..how can I completely delete one? Apparently users connecting externally use the authentic one email.domain.com (from previous sbs 2003) while internally they use remote.domain.com. Did I do something wrong?
Last question; I attempted to move/migrate to another sbs2008 but failed due to hardware problems, should I be worried?
JK
Anonymous connections on which Receive connector?   Your new one?  As long as you have locked down the IP to the printer no that's not an issue.

Sorry have I read that correctly, you have 25 open externally for gmail?  You may want to break down your previous question a bit into more detail.  Possibly separate questions.
ASKER CERTIFIED SOLUTION
Avatar of Cris Hanna
Cris Hanna
Flag of United States of America image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Still not able to run the Internet wizard; sbs console crashes on network tab...still working on it
Ok...try this..from main page  to do list
Setup My Internet Address...does this crash?