Learn how to a build a cloud-first strategyRegister Now

x
?
Solved

netgear FVS318 firewall

Posted on 2010-01-07
31
Medium Priority
?
691 Views
Last Modified: 2013-12-14
I just installed this firewall.  I am familiar with configuring except for the email notifiactions.  I have always had an issue with that.  I am in a corp enviroment.  this firewall is at one of our branch offices.  they have connect to our branch office via VPN, not part of the corp domain.  I want to get email notifications sent to my corp email address, we have an excahnge server how do i do this?
0
Comment
Question by:scripttron75
  • 18
  • 13
31 Comments
 
LVL 11

Expert Comment

by:emilgas
ID: 26211347
you have to put the ip addrss of that router on the "allowed list" on the exchange server otherwise the exchange server might think it is a spamer trying to sent mail with out authorization.
0
 

Author Comment

by:scripttron75
ID: 26211513
ok the firewall/router ip address is 192.168.xxx.xxx by default, it is behind a modem so i would use that ip address? or the public address of the modem?
0
 
LVL 11

Expert Comment

by:emilgas
ID: 26211819
Well, if you a using VPN then your exchange server sees that router as 192.168.x.x address right, so put the IP exactly how the exchange server sees that router.
0
Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 

Author Comment

by:scripttron75
ID: 26211872
no there is no vpn from site to site, the users login into the vpn from their pc, i need this to go across the cloud to get to me at my office.
0
 
LVL 11

Expert Comment

by:emilgas
ID: 26211966
Ok let me get this straight. YOu got your corp office (with the exchange server) and you got a remote office which has the Netgear. and there is not VPN or any kind of communication between these two networks?
if that's the case then you are right. you have to use the public IP address of the netgear. I even thing there is a username and password field for the netgear to authenticate right?
0
 

Author Comment

by:scripttron75
ID: 26212067
yes it requires a user name and password, for the smtp address, it says it needs a smtp address, email address and username and password.
0
 
LVL 11

Expert Comment

by:emilgas
ID: 26212234
OK, good.
SMTP Address is the IP address of your Exchanges Server
username and address are basically a valid username on the domain. Every domain usually has some sort of an admin account for things like this. But I would not recommend using the Administrator account since your username and password will be transfered using clear text all over the internet. If you had VPN then it would have been ok, but in this case it's not safe.
but again you can use an Valid active directory account, even yours
The rest should be done on the exchange server. If you have an exchange admin ask them to put your router public IP on the "allowed list" if you are the admin then you should be able to do it.
0
 

Author Comment

by:scripttron75
ID: 26212793
well the issue with this setup is that the public up is dynamic.
0
 
LVL 11

Expert Comment

by:emilgas
ID: 26214467
in that case use DYNDNS and put the hostname instead of the IP. It would be something.dyndns.org
do you know how to use DYNDNS? Netgear supports it
0
 

Author Comment

by:scripttron75
ID: 26287457
i have tried seen dyndns does it cost anything, I usually use for home use no-ip
0
 
LVL 11

Expert Comment

by:emilgas
ID: 26288532
Nope it's absolutely free
0
 

Author Comment

by:scripttron75
ID: 26296871
ok i am stil stumped on this, i put my internal exchange server address for the email server but that wont work because it needs to know the public ip address of the other network.  what am i missing.
0
 
LVL 11

Expert Comment

by:emilgas
ID: 26296903
Hold on the other side with Exchange server is not on static IP. if not how do you guys get outside e-mail?
0
 

Author Comment

by:scripttron75
ID: 26297172
no the exchange server is on a static ip address internal but to reach it publicly i dont know.  we use OWA for email access remotely.
0
 

Author Comment

by:scripttron75
ID: 26298359
since this connection is ATT dsl it requires a login with email address and password thru the modem so that is setup, in the firewall it says to use mail.myisp.com does that mean i have use ATT smtp server?  
0
 

Author Comment

by:scripttron75
ID: 26298374
this site is not on our corp network it is separted by a dsl line we are not using MPLS or anything only vpn.  so how do i configure the netgear firewall at the dsl site to send me emails to my corp email server.
0
 
LVL 11

Expert Comment

by:emilgas
ID: 26299063
It's easy to find the public ip address of the mail server. You mentioned that you use OWA. Well you can put either the OWA domain name (which translates into an IP address) or you can put the actual IP address. Here is what you do
1. Your domain name is http://mail.something.com/exchange or http://something.com/exchange just put the domain name without the /exchange and without the http:// so either mail.something.com or something.com
2. go to your command prompt and type nslookup something.com and it should give you the IP address. Don't do it from the coprorate side where the exchange server is, instead do it from home
If you tell me how you access your OWA I'll tell you exactly.
0
 

Author Comment

by:scripttron75
ID: 26365610
i cant give you that address.  i set it up exactly how you said does not send me logs.
0
 
LVL 11

Expert Comment

by:emilgas
ID: 26365818
OK Here is what... Can you set up outlook express to send mail. Let's trouble shoot your exchange server rather than your Netgear Router's log sending process.
Set up outlook express to send mail using SMTP via your Exchange server and see what error message you get. I have a feeling that your exchange server is not doing what it supposed to
0
 

Author Comment

by:scripttron75
ID: 26373303
ok i will try that and let you know please stay in touch
0
 

Author Comment

by:scripttron75
ID: 26373307
oh i am in the office now in the corporate domain, i am not at the other office that does not connect to the domain can we still do this test?
0
 

Author Comment

by:scripttron75
ID: 26374505
how woudl i setup the outlook express as pop3 or http, the webmail server is https://outlook.companyname.com

i know its not pop3.
0
 

Author Comment

by:scripttron75
ID: 26375577
how do i determine if smtp is enable on the exchange server.  look at the screenshot this is where i am stuck.
outlook-express.JPG
0
 
LVL 11

Expert Comment

by:emilgas
ID: 26376120
You are not concerned about the incoming mail, you are concerned about the outgoing mail which is your SMTP server
Ultimately you should be trying this from the outside not your domain side, but I guess this is a start too. If it works on this side then you try from the remote side. anyways your SMTP server is outlook.companyname.com
if you want you can set up pop3 which is again outlook.companyname.com
try sending  a message and tell me if you get an error message
0
 

Author Comment

by:scripttron75
ID: 26376271
i dont think this is going to work. shouldnt this be smtp.companyname.com and then pop.comapny name.com
0
 
LVL 11

Expert Comment

by:emilgas
ID: 26376380
names don't matter. it the server that counts
names point to an IP address. So technically you can put the IP address of your Exchange server instead of the name. it can be Joe.companyname.com and if that points to the exchange server then you are good. Usually it is the same thing. Big hosting companies have seperate server for sending and seperate servers for receiving and sometimes they are just labels to differentiate the POP (incoming) from SMTP from outgoing.
in your case you have only one exchange server.
do this from the command prompt
nslookup outlook.companyname.com and put the IP address returned in the outlook express box. it will work
0
 

Author Comment

by:scripttron75
ID: 26376442
ok i did that command and i get a inside address of 10.10.xxx.xxx and the it says dns request timeout, timeout was 2 seconds, non authratative answer with an outside address of 63.87.xxx.xxx

i put the ip address under the pop3 and smtp and i get this error.


outlook1.JPG
0
 
LVL 11

Expert Comment

by:emilgas
ID: 26376486
Ok here is what I can tell from your error output... I have a good news and a bad news
outlook.med3000.com is your DNS name both from inside and outside. If you are inside you are going to put the 10.x.x.x number in your outlook express. BUT NOTICE YOUR SERVER IS ACCEPTING SSL SO IN THE ADVANCED SETTINGS MAKE SURE YOU SELECT SSL. That's for the inside.
NOW the setup from OUTSIDE:
Public IP Address is 63.87.52.57 so that's what you are going to put on your Netgear. BUT the bad news is that if your server accpets only SSL then your NETGEAR will not be able to authenticate with your SMTP server because netgear does not support that. Ask your ADMIN people if it is possible to authenticate without SSL on the SMTP.
0
 

Author Comment

by:scripttron75
ID: 26376527
i will check with my exchange admin over in the other office. i am the admin in this office unfortunitly things i pretty locked down.  I see though on the netgear firewall that there is a place for server aunthentication.
0
 
LVL 11

Accepted Solution

by:
emilgas earned 2000 total points
ID: 26376534
Yup, there is a Server Authentication but it is not SSL that's your problem.
But for the sake of testing purposes you should use the OUTLOOK Express as your test to see if the authentication goes through and that you are able to send stuff out. Again, don't worry about receiving anything, you can even leae the pop3 part out. Just test the SMTP
0
 

Author Comment

by:scripttron75
ID: 26376552
ok will do.  thanks
0

Featured Post

New Tabletop Appliances Blow Competitors Away!

WatchGuard’s new T15, T35 and T55 tabletop UTMs provide the highest-performing security inspection in their class, allowing users at small offices, home offices and distributed enterprises to experience blazing-fast Internet speeds without sacrificing enterprise-grade security.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you are like regular user of computer nowadays, a good bet that your home computer is on right now, all exposed to world of Internet to be exploited by somebody you do not know and you never will. Internet security issues has been getting worse d…
Sometimes you have to pull out old tricks to get a new firewall to work… While we were installing a new Sonicwall at a customers site we found that sites they were able to visit before were not working.  It seemed random and we could not understa…
When cloud platforms entered the scene, users and companies jumped on board to take advantage of the many benefits, like the ability to work and connect with company information from various locations. What many didn't foresee was the increased risk…
With just a little bit of  SQL and VBA, many doors open to cool things like synchronize a list box to display data relevant to other information on a form.  If you have never written code or looked at an SQL statement before, no problem! ...  give i…
Suggested Courses
Course of the Month20 days, 19 hours left to enroll

810 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question