Solved

Connection from Linux Server by telnet connection closed by foreign host

Posted on 2008-06-12
28
1,317 Views
Last Modified: 2013-12-18
We want to send e-mail from a Linux server through an Exchange server so we don't have to add also users at the Linux system and have 2 mailservers.

However if we want to start an telnet session from a linux we get the following error:
connection closed by foreign host
----------------------------------------------
If we do a telnet from an Windows 2000 server we get a good reply from the Mailserver and can create helo domain.nl etc

thanks

Casper Lammertink
0
Comment
Question by:clammertink
  • 15
  • 13
28 Comments
 
LVL 16

Expert Comment

by:robrandon
ID: 21768426
Make sure you are telnetting on port 25 from the linux box.
0
 

Author Comment

by:clammertink
ID: 21768451
we did that we did:

telnet 192.9.101.3 25
0
 
LVL 16

Expert Comment

by:robrandon
ID: 21768521
Can the mail server do a reverse lookup on the linux box's IP?
0
 

Author Comment

by:clammertink
ID: 21768671
? it replies on a ping... or unc path
0
 
LVL 16

Expert Comment

by:robrandon
ID: 21768714
I think in some instances, it will try to resolve the IP back to the linux boxes name.  If you run the following command on the mail server, does it return the name of the Linux box:

NSLOOKUP <ip of linux box>

0
 

Author Comment

by:clammertink
ID: 21768818
it gives an reply with the linux server name
0
 
LVL 16

Expert Comment

by:robrandon
ID: 21768976
Check out the properties of the SMTP virtual server and see if the list is restricted to certain IP's.  If it is, confirm the IP of your linux box is in there.

0
 

Author Comment

by:clammertink
ID: 21769708
Checked that on the relay button i added the linux box
0
 

Author Comment

by:clammertink
ID: 21770009
sorry i meant did that aldready so that cant be the problem
0
 
LVL 16

Expert Comment

by:robrandon
ID: 21770384
Is there any type of network security in place that can be doing it like an IDS?

I don't recall if you need to restart a service or not for that change to take effect.
0
 

Author Comment

by:clammertink
ID: 21770548
IDS can't block it because both servers are running on the inside.

Services of smtp where already restarted
0
 
LVL 16

Expert Comment

by:robrandon
ID: 21771823
Can your switches be doing something?

Something is dropping that connection.  If it's not the SMTP Virtual server, or something else on the server, then it has to be something on the network.

0
 

Author Comment

by:clammertink
ID: 21777015
Its so strange, because from other (windows) stations which are not in the domain I can make a telnet to the server
0
 
LVL 16

Expert Comment

by:robrandon
ID: 21777702
Is it possible to take the Linux box offline for a few minutes, set one of the windows boxes to the same IP as the Linux box, connect it to the network in the same fashion, and then try to telnet?  That would eliminate any type of networking issue.

0
Is Your AD Toolbox Looking More Like a Toybox?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

 

Author Comment

by:clammertink
ID: 21777727
that is difficult as it is an ecommerce server...
0
 

Author Comment

by:clammertink
ID: 21788826
could we try something else?
According to me it can not be a ip that's been blocked...
0
 
LVL 16

Expert Comment

by:robrandon
ID: 21792868
How soon after initiating the connection does it close?  Can you provide the exact output from the connection?

0
 

Author Comment

by:clammertink
ID: 21793506
almost directly
connection closed by foreign host
0
 
LVL 16

Expert Comment

by:robrandon
ID: 21793656
So you don't even get to enter anything at the prompt?  Do you get a hello message or anything?
0
 
LVL 16

Expert Comment

by:robrandon
ID: 21793719
Go to the properties of the SMTP Virtual Server and click on the Access Tab.  Check the authentication settings there.
0
 

Author Comment

by:clammertink
ID: 21793828
on the linux i dont receive the helo or name of exchange server message
The following  items are marked under that tab:

Anonymous access
Basic authentication
Integrated Windows Authentiacation
0
 

Author Comment

by:clammertink
ID: 21801153
any ideas
0
 
LVL 16

Expert Comment

by:robrandon
ID: 21801754
I don't think the connection is even opening, even though it says it was "closed" by foreign host.

I was wondering if it was a security setting that was stopping it, but with anonymous access enabled, it should be ok.  Anything else you can find in the access tab that would prevent/allow your linux computer to telnet in?

0
 

Author Comment

by:clammertink
ID: 21801811
nope
can it also be a problem in the linux box?
At the customer side we are controlling the windows enviroment, gateway protection, firewall, but not the linux server
0
 
LVL 16

Assisted Solution

by:robrandon
robrandon earned 250 total points
ID: 21801928
I don't know much about linux, but I would imagine telnet is telnet.  Can the linux box telnet to other systems?
0
 

Author Comment

by:clammertink
ID: 21802029
that i didn't ask. But like i told in an post earlier, we can telnet from another window box that is even outside the domain(of course in the same subnet)
0
 

Author Comment

by:clammertink
ID: 22132408
the problem was the subnet mask on the linux server!
We dont control that server on the customerside... :-(
0
 
LVL 16

Accepted Solution

by:
robrandon earned 250 total points
ID: 22137037
Interesting.

Guess everything is working now.  You can probably request to get the question closed with points refunded.  No objection here.

0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Not sure what the best email signature size is? Are you worried about email signature image size? Follow this best practice guide.
This article explains in simple steps how to renew expiring Exchange Server Internal Transport Certificate.
In this video we show how to create an Accepted Domain in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Mail Flow >> Ac…
how to add IIS SMTP to handle application/Scanner relays into office 365.

911 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

25 Experts available now in Live!

Get 1:1 Help Now