ISA 2000 blocking port 25 and 110

I've just installed ISA 2000 on Server 2003 and everything web wise is working hunkydorey, but the emails from Exchange are being blocked by ISA server now.  I have opened all protocols and ports (i think) and the logs are still reporting them as blocked?!?!

The setup is 2 nics in the server
internal nic: 192.168.16.1
external nic: 192.168.0.1

Sample Log:
date              time         source-ip       destination-ip protocol     param#1     param#2    filter-rule   interface
2006-05-03   10:15:36   192.168.0.1   x.x.x.x           Tcp           11291          25              BLOCKED   192.168.0.1
2006-05-03   10:15:42   192.168.0.1   x.x.x.x           Tcp           11291          25              BLOCKED   192.168.0.1

Any help would be apreciated.
LVL 1
SteSiAsked:
Who is Participating?
 
Keith AlabasterConnect With a Mentor Enterprise ArchitectCommented:
Yes., it is.
Is ISA server and Exchange server on the same physical server box?
0
 
Keith AlabasterEnterprise ArchitectCommented:
Are you talking about traffic coming in from the Internet to the internal server?
If yes, have you published the servers under publishing rules?
You will need two.

One for publishing a mail server (will deal with port 25)
One for publishing a server        (specify port 110 for pop3)
0
 
SteSiAuthor Commented:
No, this is problems with exchange on the same server that can't process the incoming\outgoing queues.  So this is internal i.e. the exchange server is trying to retrive email (from a catch all mailbox) using the pop3 connector and trying to send them out using the smtp connector.
0
Cloud Class® Course: Microsoft Office 2010

This course will introduce you to the interfaces and features of Microsoft Office 2010 Word, Excel, PowerPoint, Outlook, and Access. You will learn about the features that are shared between all products in the Office suite, as well as the new features that are product specific.

 
Keith AlabasterEnterprise ArchitectCommented:
So on your outgoing rules, have you allowed all protocols or just http/https?

If http/https selected only, add 25 and 110 to the selected protocol list.
If all protocols already selected, please advise.
0
 
Keith AlabasterEnterprise ArchitectCommented:
Just a question, is Exchange actually on the ISA box?
If it is, you need to add local host to the 'from' box in the outgoing rule.
0
 
SteSiAuthor Commented:
I assume your talking about 'Protocol rules' under 'Access policy' (sorry not totally up to date with ISA) i have an allow rule for all ip traffic and applies to any traffic, i this what you mean?
0
 
SteSiAuthor Commented:
Yes it is on the same server,

I solved the problem, i had 4 rules setup, 2 for smtp (outgoing and incoming) and 2 for pop3 (outgoing and incoming) but i set all 4 rules to have fixed local ports instead of the outgoings to use remote ports!

Cheers for all your help

points awarded for continued help!
0
 
Keith AlabasterEnterprise ArchitectCommented:
Thank you very much.

Regards
Keith
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.