Solved

ISA 2004 with Exchange 2003 SMTP

Posted on 2004-04-14
12
379 Views
Last Modified: 2013-11-16
Anyone know how to set this up from scratch after the ISA 04 box and Exchange 03 box are up and running?

I've tried and can't get mail to flow.

I cannot get my test lab configured to use SMTP at all...I'm so lost!

Scenario:

w2k3 ad domain

2 DCs - both with DNS installed

1 ISA 2004 - connected to the internet fine...clients connect to internet fine.

1 Exchange 2003 - internal mail works fine

2 clients

I have updated the MX records and A records for the domain to point to mail.domain.com and have set the IP to the external IP of the ISA server.

I have used the mail publishing wizard in ISA 2004 and set the IP to publish as the internal IP of the Exchange server, and set it to receive from external and internal.

No mail goes outbound or inbound. I can however telnet into the external IP of the ISA server to port 25, but even then I can't send mail to internal.

PLEASE HELP. IS THERE A BASIC WALKTHROUGH of how to do this as a brand new install or scenario?
0
Comment
Question by:TheCleaner
  • 4
  • 3
  • 3
12 Comments
 
LVL 18

Accepted Solution

by:
JConchie earned 250 total points
ID: 10827488
Check   "Supporting ISA Server 2000 Publishing of Exchange Server 2000/2003 with SMTP Relays - Part 3: Creating a Simple Anonymous Inbound SMTP Relay and Links to More Resources" at:
http://www.isaserver.org/tutorials/smtprelaypart3.html

Other tutorials to be found at http://www.isaserver.org
0
 
LVL 23

Assisted Solution

by:rhandels
rhandels earned 150 total points
ID: 10841189
You have to set up Site and Content Rule based on the ip address of you mailerver to let it access the outside world.
It's something like

Allow mail --> Client Sets: (Mail Servers ip address) --> All destinations

Also you have to create Protocol rules, it's something like this

Allow Mailprotocol SMTP --> Protocol SMTP --> Client Sets:(Mail Servers ip address)

If you would like to allow pop3 you can make above Protocol Rule for Pop3.

After this, go to your Exchange System Manager and force a connection on your SMTP engine to see if it works. Also, after editing the firewalls rules, be sure to restart the firewall and proxy services..

I don't know why you have to do it like this, but just try it, it works nice for me...
0
 
LVL 23

Author Comment

by:TheCleaner
ID: 10959146
Moderators,

Not sure how to do this...

I found the answer from a guy at isaserver.org but the above answers also helped some in the situation.

I'd like to assign 100 points each for the help...but I didn't get my answer here...
0
Now Available: Firebox Cloud for AWS and FireboxV

Firebox Cloud brings the protection of WatchGuard’s leading Firebox UTM appliances to public cloud environments. It enables organizations to extend their security perimeter to protect business-critical assets in Amazon Web Services (AWS).

 
LVL 18

Expert Comment

by:JConchie
ID: 10959264
The Cleaner,

If you found your answer at isaserver.org, as you say and  as I recommended, then I have given you the direction for your answer and have earned the points fairly....and you should award them.

If you feel that rhandels also gave you information that was useful to you, then of course, you may, and should, split the points between us.

The one thing you may not do is reduce the points you offered for the solution after getting that solution.
0
 
LVL 23

Author Comment

by:TheCleaner
ID: 10961181
I don't mind giving JConchie and rhandels the points...I really don't care about the points, but their answers did not solve the question.

The link Jconchie sent me to was a link at isaserver.org for ISA 2000, not 2004, and it didn't work after using the link's information...although it did explain the concepts.

However, I did contact the moderator at isaserver.org and he helped me work through my issues with the differences between 2000 and 2004 using Exchange 2003.

Therefore, I am saying that the answers here did "assist" in me finding the answer...if that warrants the full point value according to the rules of this site, than that is acceptable to me.  I don't want to cheat anyone out of points, I just want to know what the proper turn of events should be in this kind of situation.

Let me know.
0
 
LVL 23

Expert Comment

by:rhandels
ID: 10967156
Hi TheCleaner,

Here's my 2 cents on this one. No we didn't answer the question for you. But, by my good knowledge, this site tries to help people with problems regarding their pc, network and so on. We don't know all and everything (unfortenately). As you stated, JConchie guided you to the site and my comment was somewhat heplful to you. Then i'd say split the points. Give JConchie the accepted answer and me the assisted answer and give us a c grade. You only give a c grade of people helped you a little bit into the right direction, but didn't solve the actual problem for you.

If anyone doesn't agree with me, please post the comment. But i hope whe can focus on what we are trying to do here, help people with a problem they have. And eventually, your problem is solved..... (which is, in my honest opinion the best post of all......)
0
 
LVL 18

Expert Comment

by:JConchie
ID: 10977917
Actually, a "C" grade is reserved for questions that really were not solved by the list *after* the questioner  had asked for further detail or clarification....and not received it..................an "A" or "B" is appropriate here.
0
 
LVL 23

Author Comment

by:TheCleaner
ID: 11059255
OK, just so everyone is aware, I'm not trying to cheat the system...

I've awarded the points, and the B grade, as instructed.

Thank you to both jconchie and rhandels for their help, and hopefully they won't look the other way in the future when I ask a question. :)
0
 
LVL 18

Expert Comment

by:JConchie
ID: 11059566
no problem.
0
 
LVL 23

Expert Comment

by:rhandels
ID: 11060060
No hard feelings here..... Just aks the question and we will jump on it... ;)
0

Featured Post

Surfing Is Meant To Be Done Outdoors

Featuring its rugged IP67 compliant exterior and delivering broad, fast, and reliable Wi-Fi coverage, the AP322 is the ideal solution for the outdoors. Manage this AP with either a Firebox as a gateway controller, or with the Wi-Fi Cloud for an expanded set of management features

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you are like regular user of computer nowadays, a good bet that your home computer is on right now, all exposed to world of Internet to be exploited by somebody you do not know and you never will. Internet security issues has been getting worse d…
Do you have a windows based Checkpoint SmartCenter for centralized Checkpoint management?  Have you ever backed up the firewall policy residing on the SmartCenter?  If you have then you know the hassles of connecting to the server, doing an upgrade_…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …
Are you ready to implement Active Directory best practices without reading 300+ pages? You're in luck. In this webinar hosted by Skyport Systems, you gain insight into Microsoft's latest comprehensive guide, with tips on the best and easiest way…

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question