What is Best for Backup: Amazon Drive, Google Drive or MS OneDrive? In this free whitepaper we look at their performance, pricing, and platform availability to help you decide which cloud drive is right for your situation. Download and read the results of our testing for free!
Course Of The Month
3 days, 21 hours left to enrollBecome a Premium Member and unlock a new, free course in leading technologies each month.
Solved
Exchange won't work with new firewall
Posted on 2013-01-09
As part of a move to a new building we are going to stop using our own firewall and have the university provide us that service. We have tested de-activating our current firewall rules and NAT and having the university activate them on their side. Every time we've tested, exchange does not work externally, but I can send and receive emails inside our network. The only firewall rules that I had on our firewall was for http, https and smtp. We do use webmail as well - but that should be covered under the https/smtp ports.
The university looked at their firewall and didn't see any traffic coming in our out. I found an error in the event viewer that said exchange unable to find underlying transport and listed the tcp/udp port of 47001. There has never been a firewall rule for that.
Any ideas what rules would be needed/what the issue might be? As part of this change I also have to change the default gateway from our firewall to the university's gateway. I do that on the network properties... is this in Exchange some place?
The university looked at their firewall and didn't see any traffic coming in our out. I found an error in the event viewer that said exchange unable to find underlying transport and listed the tcp/udp port of 47001. There has never been a firewall rule for that.
Any ideas what rules would be needed/what the issue might be? As part of this change I also have to change the default gateway from our firewall to the university's gateway. I do that on the network properties... is this in Exchange some place?
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
3-
3
7 Comments
What version of Exchange are you running?
Hop on the exchange server with remote desktop or console and test to see if smtp port is open by running the following command:
telnet aspmx.l.google.com 25
If port 25 outbound is open you should see a google mail server respond.
If you do not see a google mail server respond the firewall is not allowing you out. Do you have internet access from the email server?
The gateway is set on the microsoft networking adapter settings.
You are correct, the only 2 inbound ports you need is 443 and port 25 inbound.
Hop on the exchange server with remote desktop or console and test to see if smtp port is open by running the following command:
telnet aspmx.l.google.com 25
If port 25 outbound is open you should see a google mail server respond.
If you do not see a google mail server respond the firewall is not allowing you out. Do you have internet access from the email server?
The gateway is set on the microsoft networking adapter settings.
You are correct, the only 2 inbound ports you need is 443 and port 25 inbound.
Active today
I have exchange 2010 and yes we are trying to set up the rules on a Cisco firewall. What does the FixUp protocols do - see if there are errors in the rules?
I did try the telnet, but I don't think I have telnet installed as its not a recognized command. I can add that and try it again.
I did try the telnet, but I don't think I have telnet installed as its not a recognized command. I can add that and try it again.
Featured Post
![[Webinar] Learn How Hackers Steal Your Credentials](https://filedb.experts-exchange.com/files/public/2017/5/21/e0b7778f-e79e-4b5d-9ec6-5496e40be42e.png)
Do You Know How Hackers Steal Your Credentials? Join us and Skyport Systems to learn how hackers steal your credentials and why Active Directory must be secure to stop them. Thursday, July 13, 2017 10:00 A.M. PDT
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
This article lists the top 5 free OST to PST Converter Tools. These tools save a lot of time for users when they want to convert OST to PST after their exchange server is no longer available or some other critical issue with exchange server or impor…
A list of top three free exchange EDB viewers that helps the user to extract a mailbox from an unmounted .edb file and get a clear preview of all emails & other items with just a single click on mailboxes.
The video tutorial explains the basics of the Exchange server Database Availability groups.
The components of this video include:
1. Automatic Failover
2. Failover Clustering
3. Active Manager
how to add IIS SMTP to handle application/Scanner relays into office 365.
Suggested Courses
Course of the Month3 days, 21 hours left to enroll
691 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.