Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1437
  • Last Modified:

Incoming email to SBS 2008 through Watchguard XTM 22 11.4

Hi there,
I'm new to Watchguard Firewall devices, but I have an XTM 22 running Fireware 11.4 and I am attempting to set it up with an SBS 2008 running behind it using Exchange 2007.  I am able to send outgoing mail and browse the internet.  I have the SMTP firewall rule setup as I think it should be - however, when I attempt to send a test message externally, I receive a response similar to the following:

said: 550
    Requested action not taken: mailbox unavailable (in reply to MAIL FROM
    command)

I have 'googled' this a little, and found references to the SMTP proxy  settings causing this.  

Any ideas?




0
mphackett
Asked:
mphackett
2 Solutions
 
Paul SolovyovskySenior IT AdvisorCommented:
I would create a one to one NAT for the SBS Server.  

You can use a packet filter instead of SMTP proxy to validate whether SMTP proxy causing issue. Also look at the logs as you're sending out to see what's happing, also wouldnt hur to setup logging server as well on the system
0
 
dpk_walCommented:
Can you post sanitized screenshot of the policy configuration.
0
 
Old UserCommented:
I would recommend using policy based NAT rather than 1 to 1 NAT,
 
Open Policy manager.
Click on add policy- select packet filter and scroll down to SMTP
in the From box click add - select any
In the TO box click add - click add NAT
Use your external IP and for the internal IP use the SBS server IP Add Policy Add Policy 2 NAT Rule
0
 
Old UserCommented:
Fianl Rule
The final Rule
0
 
mphackettAuthor Commented:
Hi Guys,

Thanks for all of the responses - using a combination of the responses I received, I believe I have it behaving correctly.  I didn't have the NAT set up correctly, and I believe I caused more of my troubles by mis-reading a knowledge base article on the Watchguard website where it pointed to how to prevent becoming a relay for spammers.  

I'm sure I'll have more questions to throw your way as I implement this unit fully.

Thanks for all the help.....

Mike
0

Featured Post

The Firewall Audit Checklist

Preparing for a firewall audit today is almost impossible.
AlgoSec, together with some of the largest global organizations and auditors, has created a checklist to follow when preparing for your firewall audit. Simplify risk mitigation while staying compliant all of the time!

Tackle projects and never again get stuck behind a technical roadblock.
Join Now