Solved

Sonicwall TZ190 SMTP Help

Posted on 2008-06-15
7
1,248 Views
Last Modified: 2013-11-30
Hey!

I just upgraded my network's (Windows Small Business Server 2003 with about 20 clients connected) firewall from a Sonicwall Soho3 to a Sonicwall TZ 190. I threw in all the configurations from the last firewall and everything seems to be working fine except i can't send e-mails! The network uses Exchange with Outlook 2003. I can receive them easily but when i try to send one i get the following error:

There was a SMTP communication problem with the recipient's email server. Please contact your system administrator. <mycompany.com #5.5.0 smtp;550 relaying mail to gmail.com is not allowed>

Now i figure it might be a DNS problem and i forgot to add a setting. There's just a billion more settings in the TZ then there was in the Soho. I've gone into the system manager > SMTP server and checked to make sure all the authentication settings are right. I know it has to do something with the firewall i just can't put my finger on the setting. If i plug the Soho3 back in everything works fine(incoming and outoing). Help is much appreciated!

Thanks!
0
Comment
Question by:aegisyuri
  • 6
7 Comments
 
LVL 1

Expert Comment

by:ITscapes
ID: 21796471
Sounds like a policy issue with your TZ190.  Double check your port 25 and possibly port 110 policies on the old soho3 and compare to the policies on the new TZ190.

Hope that helps!

Mark
ITscapes
0
 

Author Comment

by:aegisyuri
ID: 21838261
I've double checked all the policies and i'm still getting the error.

There was a SMTP communication problem with the recipient's email server.  Please contact your system administrator.
            <myserver.com #5.5.0 smtp;550 relaying mail to gmail.com is not allowed>

I've tried looking through the help center on the microsoft site and still no success. I've even tried calling their tech help (sonicwall's) but on the weekend they take forever to transfer and don't seem to be much help either.
0
 

Author Comment

by:aegisyuri
ID: 21838400
I just got off the phone with the Sonicwall tech and they said its probably a setting that our isp uses. We use Cox Cable for our ISP and i checked the smtp connector on our exchange server and it has smarthost.coxmail.com as the forward. Is there some setting in the firewall that i need to change to convey this?
0
How your wiki can always stay up-to-date

Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
- Increase transparency
- Onboard new hires faster
- Access from mobile/offline

 

Author Comment

by:aegisyuri
ID: 21839093
I just called Cox and they added our ip to their relay in the database but i'm sure that isn't going to make a difference considering we could send email before we installed the new firewall. And that's pretty much the only advice they can give us...
0
 

Author Comment

by:aegisyuri
ID: 21859988
I've tried everything so far and nothing seems to work. Anyone else have any light on the situation? I know it has to be just one setting.
0
 

Author Comment

by:aegisyuri
ID: 21860062
I've turned on smtp logging to see if that can help shine the light. here are a couple of errors.

This is an SMTP protocol error log for virtual server ID 1, connection #2. The remote host "68.99.120.5", responded to the SMTP command "rcpt" with "550 relaying mail to gmail.com is not allowed  ". The full command sent was "RCPT TO:<aegis@gmail.com>  ".  This will probably cause the connection to fail.

This is an SMTP protocol error log for virtual server ID 1, connection #1. The remote host "68.99.120.5", responded to the SMTP command "rcpt" with "550 relaying mail to cox.net is not allowed  ". The full command sent was "RCPT TO:<irca@cox.net>  ".  This will probably cause the connection to fail.
0
 

Accepted Solution

by:
aegisyuri earned 0 total points
ID: 21861562
So i've narrowed it down to the NAT policies. Sonic OS Enchanced is way more confusing. Here is my NAT policy:

 # Source Destination Service Interface
    Original  Translated  Original  Translated    Original                   Translated     Inbound  Outbound
         Any     Original       Any      HC Server   SMTP   (Send E-Mail) Original         Any Any

and my access rule:
 Zone > Zone Priority  Source  Destination  Service  Action
LAN > WAN        3        Any    HC Server SMTP (Send E-Mail) Allow All

I no longer get the relay error but the emails don't seem to be going out. They're hanging out somewhere in queue?
0

Featured Post

How your wiki can always stay up-to-date

Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
- Increase transparency
- Onboard new hires faster
- Access from mobile/offline

Join & Write a Comment

I've often see, or have been asked, the question about the difference between the Exchange 2010 SP1 version, available as part of Small Business Server (SBS) 2011, and the “normal” Exchange 2010 SP1 Standard. The answer to the question is relativ…
The articles for turning off the Client firewall policy on the internet are for SBS 2008 and don't really help for SBS 2011. They actually moved the Client firewall policy. In 2011, the client firewall policy has moved to the SBS computers conta…
Excel styles will make formatting consistent and let you apply and change formatting faster. In this tutorial, you'll learn how to use Excel's built-in styles, how to modify styles, and how to create your own. You'll also learn how to use your custo…
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…

760 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now