Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
Solved

WatchGuard Firebox2 blocking authenticated SMTP ?

Posted on 2002-05-21
10
3,843 Views
Last Modified: 2013-11-16
We are running a WatchGuard Firebox2.

Authorised SMTP is being blocked...  
the following is showing up in the logs:

 removing smtp keyword: AUTH = LOGIN
 bad command: AUTH
 bad command: PRIORITY
 etc etc...

Why is this...

How can we configure the firewall so that authenticated SMTP requests pass through?

Thanks.
 
0
Comment
Question by:coopa
  • 5
  • 5
10 Comments
 
LVL 2

Author Comment

by:coopa
ID: 7023735
have added AUTH to list of supported proxys... but still no luck
0
 
LVL 23

Expert Comment

by:Tim Holman
ID: 7028485
Does your SMTP server allow these commands ?
ie - what happens without the firebox in place ?
I don't know these too well - it may just be filtering SMTP AUTH, which is sort of a standard thing SMTP filters/firewalls do
0
 
LVL 2

Author Comment

by:coopa
ID: 7029120
> Does your SMTP server allow these commands ?
I'm pretty sure it does.. yes.

> ie - what happens without the firebox in place ?
We can't just take it down unfortunately... as it protects the entire organisation... there may be a way to allow my machine to connect to the server without opening up everything.

Thanks for your help.
0
PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

 
LVL 23

Expert Comment

by:Tim Holman
ID: 7029302
What mail server do you use - I'll find this out.
0
 
LVL 2

Author Comment

by:coopa
ID: 7029308
Microfft exchange server.

Right I have more info on this....

It is DEFINATELY the firewall that is blocking these AUTH requests.

I have opened up all ports between my machine and the mail server and the Authentication process worked fine.  
0
 
LVL 23

Expert Comment

by:Tim Holman
ID: 7029428
Open up TCP/UDP port 113 - I think this is the IDENT port needed for SMTP auth in this case....
Another way to solve problems like this is to look through the log files and work out what's being blocked, destined for or coming from your mail server...
0
 
LVL 2

Author Comment

by:coopa
ID: 7029437
That port is already open.

the log says the following:
  removing smtp keyword: AUTH = LOGIN
  bad command: AUTH
  bad command: PRIORITY

it seems to be blocking parts of the headers
0
 
LVL 23

Accepted Solution

by:
Tim Holman earned 100 total points
ID: 7031546
It appears Watchguard's SMTP proxy either doesn't understand AUTH=LOGIN or considers it dangerous.
Whilst trawling through the web, it seemed that Watchguard does not fully support all ESMTP commands, so you may not be able to get AUTH working at all.
Check these links @ Watchguard:

http://wgusers.watchguard.com/archive/wg-users/2001-03/msg00045.shtml
http://wgusers.watchguard.com/archive/wg-users/2000-12/msg00160.shtml

There MAY be support in the future, but it doesn't look like there is currently.

Are you running latest version of firewall software ?

If you have a serial number etc, you can probably log this direct with Watchguard and see if there's a fix / update for this yet, but unfortunately I can't get deep enough into their support pages !
0
 
LVL 2

Author Comment

by:coopa
ID: 7036681
Thanks tim,

> Are you running latest version of firewall software ?
Unfortunately not, our maintenance subscription has run out.

Cheers for doing the research though.
0
 
LVL 23

Expert Comment

by:Tim Holman
ID: 7036747
No problem.  Let me know if you need any help with renewals - we're a Watchguard reseller (UK based) - tim_holmanNOSPAM@hotmail.com
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
More Wifi, 5 68
Mailchimp - Security and where is the data stored? 2 65
Open Encryption Software Advice needed 4 67
SAP HANA vulnerability threat report. 2 18
How do we balance the user experience (UX) with reasonable security measures? It can be done, if you keep these fundamentals in mind.
It’s the first day of March, the weather is starting to warm up and the excitement of the upcoming St. Patrick’s Day holiday can be felt throughout the world.
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, just open a new email message. In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…

840 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question