Avatar of nonlinearly
nonlinearly asked on

Exchange 2003 smart host option

Hi, we have an Exchange 2003 as mail server and in the connector has been selected the option: "Forward all mail through this connector to the following smart hosts".
The smart host is the smtp server of our ISP.
Recently our ISP saint to us that this smtp is to be replaced from another. So they sent to us the new smtp address to replace the old smart host. But with the new smtp address we can not send e-mail and the exchange return this message:
Cannot send the message.  530 Authentication Required
I know that this smtp requires authentication but where in exchange can set up this?
Thanks
Exchange

Avatar of undefined
Last Comment
nonlinearly

8/22/2022 - Mon
ASKER CERTIFIED SOLUTION
Miguel Angel Perez Muñoz

Log in or sign up to see answer
Become an EE member today7-DAY FREE TRIAL
Members can start a 7-Day Free trial then enjoy unlimited access to the platform
Sign up - Free for 7 days
or
Learn why we charge membership fees
We get it - no one likes a content blocker. Take one extra minute and find out why we block content.
See how we're fighting big data
Not exactly the question you had in mind?
Sign up for an EE membership and get your own personalized solution. With an EE membership, you can ask unlimited troubleshooting, research, or opinion questions.
ask a question
Mohammed Tahir

Yes I agree with  Drashiel post.


Tahir
Simon Butler (Sembee)

Sorry to say, but those are very poor instructions.
If you follow those instructions and later on try to migrate to another server you will find that email doesn't flow as expected.

NEVER EVER put a smart host on the SMTP Virtual server.
Leave it configured it on the SMTP Connector.
NEVER EVER change the authentication settings on the SMTP Virtual server. You set the authentication details on the properties of the SMTP Connector.

The SMTP virtual server should ideally be left in an almost default configuration.

Simon.
Mohd_Shaikh

Hi,

AuthSMTP - Microsoft Exchange 2003:

http://www.authsmtp.com/exchange-2003/


Thanks!
Experts Exchange is like having an extremely knowledgeable team sitting and waiting for your call. Couldn't do my job half as well as I do without it!
James Murphy
ASKER
nonlinearly

Sembee2,
yes you are right.. As I have seen with the previous smtp the only setup was the "Forward all mail through this connector to the following smart hosts" in the connector and nothing in the smart host of the smtp virtual server. But where in the connector can I setup the port. My ISP said to me that the port is not the default 25 but 587... I can not find anything in the connector about pot setting... but the smtp virtual server has!
Simon Butler (Sembee)

If you need to use another port then you will have to setup a second SMTP virtual server. One for each port. Then configure the SMTP connector to use the Second SMTP virtual server.

The SMTP connector doesn't have the port configuration, it is just a configuration - I have used the metaphor that the SMTP virtual server is the road, the SMTP Connector is the signpost.

Simon.
ASKER
nonlinearly

I have tried all the suggestions but when I send e-mail exchange returns me:

#5.7.1 smtp;550 5.7.1 Client does not have permissions to send as this sender
Get an unlimited membership to EE for less than $4 a week.
Unlimited question asking, solutions, articles and more.
SOLUTION
Simon Butler (Sembee)

Log in or sign up to see answer
Become an EE member today7-DAY FREE TRIAL
Members can start a 7-Day Free trial then enjoy unlimited access to the platform
Sign up - Free for 7 days
or
Learn why we charge membership fees
We get it - no one likes a content blocker. Take one extra minute and find out why we block content.
See how we're fighting big data
Not exactly the question you had in mind?
Sign up for an EE membership and get your own personalized solution. With an EE membership, you can ask unlimited troubleshooting, research, or opinion questions.
ask a question
ASKER
nonlinearly

But this message is from MY exchange. Who is the "Client" and who is the "sender".
Also I tried to make an account in outlook with these settings (username,password,port 587,TLS) only to see if the smtp works and was ok!!! So the operator of the smart host (is our ISP) said to us that if the  settings worked in the outlook then they can't help further!!!
Simon Butler (Sembee)

The NDR is generated by your server. That doesn't mean your server is the source of the problem, just that is where the message got stopped. In this scenario it means the next hop refused the message - which is the msart host.

The response you got from your ISP isn't surprising. Most ISPs are only interested in finding ways to close the call as quickly as possible.
Did you setup the SMTP connector to authenticate when sending?

Are you unable to get a static IP address and PTR? You don't have to use a smart host. If port 25 is open to the internet, you have a static address and the ISP will set the PTR then you can deliver directly.

Simon.
ASKER
nonlinearly

As I have mentioned before I tried all the ways previously suggested from experts so and connector's authentication!

The reason for this choice  (smart host) is to avoid security issues... but if we can not better then we will change it...

We have static IP, port 25 is open but I do not know what did you mean about PTR. I know that a PTR has to do with reverse DNS but can you be clearer? What exactly we have to do about PTR? We have access to our DNS records (now) so ISP has nothing to do...

Thanks
This is the best money I have ever spent. I cannot not tell you how many times these folks have saved my bacon. I learn so much from the contributors.
rwheeler23
Simon Butler (Sembee)

PTR is a reverse DNS. Reverse DNS is a PTR.
What security issues do you think you are avoiding by using a smart host? You are trying your email delivery and reputation to another service you have no control over.

If you have a static IP address then get the PTR set and deliver email directly. You can then set SPF records etc and lock things down. Most Exchange servers will deliver email directly - for me smart host use is the last choice, not the first.

Simon.
ASKER
nonlinearly

The problem is with our ISP... we need a username/password to allow us to relay...!!!
They harassed us... because they did not understand what they say