Sendmail in dmz to exchange inside


I have a xampp server serving a website on my dmz interface of my cisco asa.
on the inside interface i have exchange running.
The sendmail has default configuration for now. I have statically mapped exchange on the DMZ and created all the proper access lists. In fact on the ubuntu server running the sendmail i can telnet test using the dmz ip address of exchange.

Basically this is for a webpage that sends emails, the emails are for users in my exchange server so i only need sendmail to deliver emails to my exchange.

What is needed to make sendmail send emails to my exchange ?

Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

wyliecoyoteukIT directorCommented:
You will need to enable the sendmail PC as a relay in exchange.
What version of Exchange are you running?

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
ifredAuthor Commented:
See ... when i check my mail.log on the machine i see it giving me a connection timeout to my
I believe my issue is related to dns. Though i have never told sendmail to relay mail, it knows somehow that needs to send email to (my exchage mx record). The problem might be happening because if it resolves the dns of the it will resolve to an ip it will not have access to, as it is on the inside network and this box is on the dmz. For that purpose i created a static map of the exchange to the dmz and i added this ip on the hosts file.
Since the box is set to resolve first by hosts then by dns i thought it would use the ip on the hosts file. If it did though i would be connecting for sure as i have tested connecting to exchange via telnet from this box.
But unfort. it is not connecting and it makes me think it really does not care about my entry on hosts and is still using the dns entry.

Sooo .... how the heck to i make (at least) sendmail send email direct to the internet ???
ifredAuthor Commented:
And just to add, i had a similar box inside my network (same as exchange) and it was connecting and using exchange no problems without me adding anything to exchange.
Determine the Perfect Price for Your IT Services

Do you wonder if your IT business is truly profitable or if you should raise your prices? Learn how to calculate your overhead burden with our free interactive tool and use it to determine the right price for your IT services. Download your free eBook now!

wyliecoyoteukIT directorCommented:
That is because Exchange 2003 by default allows relays from the local subnet.
ifredAuthor Commented:
Humn interesting. O Will try and let you know, thanks amigo!
wyliecoyoteukIT directorCommented:
We tend to get this all the time when setting up MFDs to scan to email.
This might help
ifredAuthor Commented:
did not seem to help adding the ip of the sendmail box to the allowed list of smtp relay of exchange. Guess i should figure a way to have sendmail send emails directly to the internet instead of trying my domain, just not sure how as i see it probably getting the mx record from my dns.

ifredAuthor Commented:
Finally i fixed it :D
I will explain my "String pulling" thoughts here if anybody has this problem.
Sendmail queries the dns the server has set for the mx record of the domain. In my case the mail server i will be using as a relay is behind my firewall sitting on the inside interface. Since i opted to have my server using my dns inside as it proved to be faster, it was also resolving the mx record of my domain to an ip my Linux server would not have access to, this ip being the ip of my exchange server. I have the exchage server ip mapped on the dmz for the purpose of this linux server accessing it for smtp connections but i was not able to figure out how to force sendmail to use it.
Attempts to have the ip hard-coded on the hosts file failed, as sendmail will always query the dns directly.
After a lot of trial i found i could solve the problems two ways:

1) I setup the first dns to be Google dns: Sure enough the box resolved my mx records on the internet and was able to deliver the message using those addresses. That is great but the dns resolution time on my box decreased significantly.

2) I found out that you can configure your with: FEATURE(`nullclient', `[x.x.x.x]')dnl
As long as you put the brackets on the ip address, i will force sendmail not to do a mx lookup on the dns and instead blindly use the x.x.x.x email provided as the relay host.

After you chage the file, do the m4 command to re-compile your
m4 /etc/mail/ > /etc/

No firewall changes, no funky setup.  opted for choice #2.
Since wylie had a valid point about the relay on exchange i will assign part of the points. Thanks amigo!
ifredAuthor Commented:
I was able to through trial and error figure the solution.
ifredAuthor Commented:
As i said i was able to figure this myself but wylies comments helped on the relay part.
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Email Software

From novice to tech pro — start learning today.