Unable to connect to port 25 except from localhost

Posted on 2006-12-01
Last Modified: 2012-05-05
Hi any help on this would really be appreciated.

We recently took on IT support for a new customer who has a small busines server 2003 which the previous IT company had left partially installed. We continued the installation rather than reinstalling completly, which I now hope we can now avoid doing.

Almost everything is fine with the exception of port 25 connetivity. In a nut shell telnet to port 25 only works from the server itself on or the local IP address of the server. Information on why or how this state of affairs has happened to get to this point is not availalbe. We look after a large number of these servers and have cross checked all optional settings within SMTP to no avail. If we add an additional port within the default SMTP default virtual server within exchange on port 26 we can connect via telnet and receive the banner from the SMTP service from inside the network and over the internet. We have tried to use port redirects on the firewall to get around this but port 26 only responds when connected to directly. If we redirect it to 25 on the public side of the firewall it does not respond.  

This is a single network card installation with all the latest patches applied. I have read that the fault may relate to RAS so I have disabled and reenabled that to no avail. I have also read that implementing a second network card and activating the firewall on the server might resolve it but I would now want to understand why this is happening.

The server was running Sophos but we have removed that already to no avail. Policy manager appears to be the default configuration. much obliged for your help.
Question by:Brontide
LVL 16

Expert Comment

ID: 18053336
Can you check within the default connector and see if it is accepting only or denying all but the address of the server and localhost?


Author Comment

ID: 18055823
Hi Adam

It's set to all except the list elow which is blank

Accepted Solution

envintl earned 500 total points
ID: 18059951

what type of isp are they using?  is it an isp like charter or comcast that normally blocks port 25?  I know here at my home that is the case unless I pay for a business account.  

Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!


Author Comment

ID: 18062986
Hi Sean,

Thanks for your input . They are using Demon, we called them first thinking they were causing the problem and we changed the firewall as well just in case there was a fault there, then we discoverd we can't connect to port 25 even from the LAN. Outlook 2003 connects to the server successfully and they can send email using the exchange on the server.

Author Comment

ID: 18071209
Correction we can connect to the server on port 25 from the LAN. However even with a VPN connection opened to the server it is not possible to connect to the internal IP address on port 25
LVL 74

Expert Comment

by:Jeffrey Kane - TechSoEasy
ID: 18073838

If you'd kindly post a compelete IPCONFIG /ALL from the server that would certainly help in determining what's going on.


Author Comment

ID: 18075449
Got there!!

Used redirect on the firewall mapping port 26 public to port 25 private we got the banners. This meant that it had to be the ISP. Back on to Demon and only because of becoming completly belligerent, spending over an hour and a half of persistance, contacting their support plus team, repeateatly asking for supervisors did someone actually check what was wrong.

Well done Sean.

They claim to have blocked port 25 because there was SPAM coming from the customers site, they blocked 25 inbound not outbound; muppets!


Expert Comment

ID: 18087256
good to hear that you got it resolved.  I am suprised that you could not connect via vpn (if I read your responses correctly)  but as long as you have it going, we will run with it....



Author Comment

ID: 18087337

Just waiting on Demon to finally remove the block which they still claim is outbound............... I had one of their supervisor (who I will name if that's permitted? at least he took my call unlike the others!) remote desktop onto the server and open outbound 25 just to prove his colleagues are clueless.

The same supervisor gave me another supervisors name to call tomorrow morning who's part of the abuse team 12, still waiting. Thankfully the dns record is under the charge of an even worst company who have failed 3 times to make the correct mx record adjustment and therefore mail is still receivable............

Where has customer service gone??????



Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
SBS serve  2008 offsite backup 2 105
SBS 2011 6 51
Unable to edit save GPO not enough disk space 11 47
Remote assistance portal on Server 2012 standard ? 2 22
A lot of problems and solutions are available on the net for the error message "Source server does not meet minimum requirements for migration" while performing a migration from Small Business Server 2003 to SBS 2008. This error pops up just before …
The problem of the system drive in SBS 2003 getting full continues to be an issue, even though SBS 2008 and SBS 2011 are both in the market place.  There are several solutions to this, including adding additional drive space or using third party uti…

713 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question