Configure SMTP Virtual Server in DMZ to relay mail through internal Exchange server

Here is the scenario:

We have an ASP.Net Web application on a web server (IIS, Win 2003) in a DMZ that sends an e-mail to the localhost SMTP server (same machine) where the mail is supposed to be routed to our Exchange Server (2000) internally as a relay.  Exchange should then handle all mail processing.

The application works fine and the messages are queued up in the local mailroot directory.  They are then flagged undeliverable after the retry attempts fail due to the inability to contact the mail server.

My question(s) are as follows:

1. Do we need to enable SMTP traffic both ways between webserver and exchange server?
2. What entries do I need to enter in the advanced delivery options on the virtual smtp server for 'masquerade domain', 'fully-qualified domain name' and 'smart host'?
3. How do I configure the exchange server to accept and relay the SMTP mail?

While I can't provide too many details, the webserver is in it's own workgroup in it's own subdomain separate from the exchange server which is in a windows/active directory-type environment.

Any insight and advice is greatly appreciated.
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

1.  You need to enable SMTP from webserver to Exchange.  Verify this by telnet on port 25 from webserver to Exchange.
2.  You only need to fill in smart host here, enter the IP of the Exchange server.
3.  Open Exchange system manager, drill down under the server/protocols/SMTP and get properties of the SMTP VS.  Go to the 2nd tab, click relay, and select only the list below and add the IP of the SMTP server.  

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
garthjhAuthor Commented:
Thanks for your quick reply.

Working on these suggestions, but for answer #2 the dialogue box for the advanced delivery options will not allow you to click 'ok' unless you specify something in the 'fully qualified domain box'.  What needs to go here?  The domain name through which I am sending the mail ( (the sender for the e-mails is ALWAYS a valid user in the domain) or the mail server ( or something else?  The SMTP Virtual server is in it's own workgroup so it really is not associated with the domain (
In that case you can put anything you want in there.  Since other servers will not be relaying off of this server (just the application) it doesn't matter.  
garthjhAuthor Commented:
This issue is still unresolved, but it looks as though it is definitely our routing issue, which we'll need to fix.  Good suggestions from marc_nivens on items to check for.
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.