Solved

sbs 2003 R2 - ISA blocking internal SMTP relay

Posted on 2011-09-20
3
829 Views
Last Modified: 2012-05-12
Trying to allow our Contract Manager server to "relay" to our Exchange 2003 SBS 03R2 server.

Somehow the ISA 2006 keeps stopping it.  It never gets to the SMTP.

Things I have done:
I allowed the IP of the server as a relay in SMTP VIrtual properties
I added a firewall rule allowing mail protocols from contract manager server to internal/external/local

Doesn't seem to matter.  Keep getting 2 logs in ISA monitor:
1.  When email is sent from contract manager, this appears:
Initiated Connection
SERVERNAME 9/20/2011 3:53:48 PM
Log type: Firewall service
Status: The operation completed successfully.
Rule: CM Email
Source: Internal ( 192.168.xxx.xxx:4559) Destination: Local Host ( 192.168.xxx.xxx:25) Protocol: SMTP

2.  Then the handshake is dropped with this error:
Closed Connection
SERVERNAME 9/20/2011 3:54:48 PM
Log type: Firewall service
Status: A connection was gracefully closed in an orderly shutdown process with a three-way FIN-initiated handshake.
Rule: CM Email
Source: Internal ( 192.168.100.4:4559) Destination: Local Host ( 192.168.100.9:25) Protocol: SMTP

Full error message in isa monitoring log shows:  0x80074e20 fwx_e_graceful_shutdown

So it seems to me that this is definitely being blocked by ISA.  Contract Manager requires anonymous authentication for SMTP relay - so maybe I should setup a separate smtp outbound for this email relay?

THoughts/steps/recommendations?
0
Comment
Question by:ohioholiday
  • 2
3 Comments
 
LVL 51

Expert Comment

by:Keith Alabaster
Comment Utility
If ISA was blocking then ypou would receive a denied message in the log - the messages you are reporting above are clean, 'completed' messages against the traffic ISA has been asked to pass. I would go back to the Exchange arena and check there again first as it looks like ISA does not get sight of the full transaction.
0
 

Accepted Solution

by:
ohioholiday earned 0 total points
Comment Utility
Self Resolved - Exchange 2003 was not allowing any incoming email accept from spam filter.
0
 

Author Closing Comment

by:ohioholiday
Comment Utility
No other solutions.
0

Featured Post

Why You Should Analyze Threat Actor TTPs

After years of analyzing threat actor behavior, it’s become clear that at any given time there are specific tactics, techniques, and procedures (TTPs) that are particularly prevalent. By analyzing and understanding these TTPs, you can dramatically enhance your security program.

Join & Write a Comment

Introduction At 19:33 (UST) on Tuesday 21st September the long awaited email arrived with the subject title of “ANNOUNCING THE AVAILABILITY OF WINDOWS SBS 7 PREVIEW”.  It was time to drop whatever I was doing and dedicate as much bandwidth as possi…
The problem of the system drive in SBS 2003 getting full continues to be an issue, even though SBS 2008 and SBS 2011 are both in the market place.  There are several solutions to this, including adding additional drive space or using third party uti…
Internet Business Fax to Email Made Easy - With eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, fr…
This video discusses moving either the default database or any database to a new volume.

771 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now