Solved

monitor smtp traffic

Posted on 2009-05-14
14
1,385 Views
Last Modified: 2012-05-07
I would like to montor an SMTP traffice going between 2 computers.
I don't have an email server(Exchange server, Domino,etc...).
I wonder if it's enough just to install SMTP service in both computers and download a tool(if there is any) from internet and test SMTP connection.

Thanks
0
Comment
Question by:jskfan
  • 7
  • 6
14 Comments
 
LVL 46

Expert Comment

by:Sjef Bosman
ID: 24383993
To monitor SMTP traffic, you can install WireShark on a third system.

You can set up a simple email server, e.g. using Linux, or any free SMTP server you can find. This one is freeware, seems a pretty popular one:
http://www.tucows.com/preview/195629
0
 

Author Comment

by:jskfan
ID: 24384145
I am using 2 windows 2003 server boxes.
How do I start your approach?
0
 
LVL 46

Expert Comment

by:Sjef Bosman
ID: 24384243
Download and install the server software, create some accounts and start outlook to send mail from one of the accounts to another one.
0
Comprehensive Backup Solutions for Microsoft

Acronis protects the complete Microsoft technology stack: Windows Server, Windows PC, laptop and Surface data; Microsoft business applications; Microsoft Hyper-V; Azure VMs; Microsoft Windows Server 2016; Microsoft Exchange 2016 and SQL Server 2016.

 

Author Comment

by:jskfan
ID: 24386742
I installed the sambar server 7.0, where do I add users.
any more step by step to get it working, please?
0
 
LVL 46

Expert Comment

by:Sjef Bosman
ID: 24394237
Apparently, Sambar only has an SMTP proxy and is not a complete server. Anyway, I couldn't find it either how to create users. So sorry...

Maybe this server is better, it seems to be anyway:
http://www.tucows.com/preview/601968
"MDaemon FREE mail server software is a 5-user license version of the award-winning MDaemon Email Server for Windows."
0
 

Author Comment

by:jskfan
ID: 24409114
I have enabled SMTP service in one computer and Telneted to it from another computer on port 25.
example: Telnet  10.10.10.10 25

would that be enough to test SMTP connection between 2 computers?
0
 
LVL 46

Expert Comment

by:Sjef Bosman
ID: 24409651
Enough? No. You've only established that there's a server on the other side but you don't have proof that it works 100% correctly. The least you can do is create some SMTP-users on the server and use Outlook to those users. E.G. set up John Doe and Jack Chit on the server. Create an Outlook account for John Doe, and send some mails to the server for Jack Chit. Check on the server that mail arrived (there must be logs). Now you've tested SMTP communication.

If you want to test POP3 communication as well, set up an Outlook account for Jack Chit (on the same or on a different system), and try to receive your mail.
0
 
LVL 3

Expert Comment

by:Ghousullah
ID: 24409664
Please confirm why you need to test SMTP traffic. Based on your requirement I can suggest you the options.
0
 

Author Comment

by:jskfan
ID: 24415784
I don't have an SMTP server such as Exchange server. I have enabled SMTP services in one computer(SMTPCOMPUTER), then trying to telnet to it through port 25.
for test purposes,There are some computer to which I permitted TCP 25 Through IPSec policy, and they can telnet on port 25 to SMTPCOMPUTER, but the other ones to which I Required Security, it shows Negotiate Security when I telenet on port 25 to SMTPCOMPUTER.

Now my question is the SMTP Traffic flowing between the computers to which I REquired Security on port 25 to the SMTPCOMPUTER or the SMTP traffic is blocked. How do I know that?
Unfortunately we don't manage our exchange server, unless if I can get some help to how to relay and email to the exchange server using the SMTPCOMPUTER.
0
 

Author Comment

by:jskfan
ID: 24415866
Ghousullah:

I want SMTP traffic between 2 computers to be secure.
I want to confirm that it's flowing between 2 computers in a secure way.
0
 
LVL 46

Expert Comment

by:Sjef Bosman
ID: 24417169
Then don't use port 25, instead use port 465 and Secure SMTP with SSL.

Did you already download WireShark?? http://www.wireshark.org/
0
 

Author Comment

by:jskfan
ID: 24422210
<<Then don't use port 25, instead use port 465 and Secure SMTP with SSL.>>

I am using IPSec inside the LAN so it's Active Directory Kerberos ,not Certificate.
when teleneting to port 25 , you are testing SMTP I believe. that's what I am doing.
I downloaded wireshark. I also use Network Monitor to capture traffic between 2 computers it shows ESP frames, that means secure. Correct?

0
 

Author Comment

by:jskfan
ID: 24437447
any updates?
0
 
LVL 46

Accepted Solution

by:
Sjef Bosman earned 500 total points
ID: 24438822
I have no detailed knowledge of IP or TCP/IP, so I can't tell if it's secure. Maybe this question should be added to the TCPIP Topic Area of EE?
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Utilizing an array to gracefully append to a list of EmailAddresses
Local Continuous Replication is a cost effective and quick way of backing up Exchange server data. The following article describes the steps required to configure Local Continuous Replication. Also, the article tells you how to restore from a backup…
In this video we show how to create a Distribution Group in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Recipients >>…
In this video we show how to create an Address List in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Organization >> Ad…

803 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question