• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1617
  • Last Modified:

SMTP, POP Mail on SBS 2008

I have this scenario...
A printer on the network which should have a send gateway for mailing scan jobs..and i have SBS 2008 with exchange installed..
The printer gets/finds the send gateway as my exchange server but the sending fails because of SMTP authentication errors
I have tried to create a user who can emulate and POP mail using Outlook and the same authentication error occurs...
I have tried all the login options with no success
0
Jkipkangor
Asked:
Jkipkangor
  • 4
  • 3
  • 2
1 Solution
 
Cris HannaCommented:
you'll need to setup a specific receive connector in Exchange to all anonymous relay from a specific IP address

http://technet.microsoft.com/en-us/library/bb232021(EXCHG.80).aspx
0
 
Robert_TurnerCommented:
A new receive connector should not be nessecary.  The printer is not an anonymous user if your trying to authenticate with a AD account.

Why do you require the Printer to be able to POP the exchange?  You mention you only require to scan documents to exchange, I would disable pop.

Create yourself a generic user called "Scanner" for the purposes of authentication.  Specify "Domain\Scanner" as the username unless there is a separate

At this point I don't know if your exchange receives e-mail by SMTP externally?  So also check your firewall  that SMTP 25 is open (Control Panel -> Windows Firewall -> Allow a Program through Windows Firewall)

A quick test to make sure it is not being blocked "Telnet Servername 25" from any internal network PC.

I hope this gives you something to work with.
0
 
Cris HannaCommented:
I suspect that Mr Turner has not done much work with SBS 2008 based on several statements.
Exchange does not natively support "basic" authenication.  This is different from SBS 2003 when sending from these multifunction machines was much easier.

With Exchange 2007, even more of an effort was made to insure it did not become an open relay.   So the default receive connector will not allow the connection.

The new receive connector allows anonymous submittal from ONLY the internal IP of the scanner/fax machine and therefore it will not be an open relay.

Because of the nature of SBS, the Windows Firewall (for internal connections) is open for port 25
Whether the external firewall is forwarding port 25 to allow for receipt of external mail has no effect on receiving mail from internal resources
0
Making Bulk Changes to Active Directory

Watch this video to see how easy it is to make mass changes to Active Directory from an external text file without using complicated scripts.

 
Robert_TurnerCommented:
Cris what are you describing is SBS Internet Recieve connector, for incoming e-mail.  Which all of what you just said is correct.  The changes were there to stop open relay.  Another receive connector is still not needed.

There is allready a default internal SBS2008 recieve connector, that will accept basic or AD authentication from any IP within the network other than the default gateway.

I'm fully aware that SMTP is open by default, what I'm not doing is making the presumption that it is open as it has not been made clear yet if SMTP is used for anything else incoming at this point, internal or external.  This is why I have asked for a simple telnet test of Exchange.  Which will also tell me if the default SBS2008 is functioning correctly.

There is also a third SMTP recieve connector, specificly for the built in POP3 connector to transfer to.  A third party POP collector would have to use the default SMTP receive connector.

Please don't make assumptions about what I am and am not familiar with.  It would also help if you read a comment as I was not suggesting anonymous access in any case.
SMTP.JPG
0
 
JkipkangorAuthor Commented:
Thanks so much guys; after going through all the suggestions, I finally succeeded by creating a new connector..
Anonymous connections to my local server IP:25 works well now but I think it opens up for spam, what do you guys think?
Another reason why I open up smtp is that apparently users in our organization 'like' using Gmail import mail option to create copies of mails, works fine now
I still have a problem with certificates though..how can I completely delete one? Apparently users connecting externally use the authentic one email.domain.com (from previous sbs 2003) while internally they use remote.domain.com. Did I do something wrong?
Last question; I attempted to move/migrate to another sbs2008 but failed due to hardware problems, should I be worried?
JK
0
 
Robert_TurnerCommented:
Anonymous connections on which Receive connector?   Your new one?  As long as you have locked down the IP to the printer no that's not an issue.

Sorry have I read that correctly, you have 25 open externally for gmail?  You may want to break down your previous question a bit into more detail.  Possibly separate questions.
0
 
Cris HannaCommented:
Your new receive connector needs to be modified to ONLY allow mail from the specific IP of the copier scanner.

Not real clear what you're doing with Gmail...

Regarding Certs...with SBS 2008 when you run the Set up my internet address wizard, unless you make changes, the self signed cert is created for remote.domainname.com

If you want to use email.domainname.com then you have to run the wizard again and click on advanced when you enter the domain name and change remote to email and then finish the wizard

Of course the best option is to purchase a trusted third party cert
0
 
JkipkangorAuthor Commented:
Still not able to run the Internet wizard; sbs console crashes on network tab...still working on it
0
 
Cris HannaCommented:
Ok...try this..from main page  to do list
Setup My Internet Address...does this crash?
0

Featured Post

Important Lessons on Recovering from Petya

In their most recent webinar, Skyport Systems explores ways to isolate and protect critical databases to keep the core of your company safe from harm.

  • 4
  • 3
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now