nonlinearly
asked on
Exchange 2003 smart host option
Hi, we have an Exchange 2003 as mail server and in the connector has been selected the option: "Forward all mail through this connector to the following smart hosts".
The smart host is the smtp server of our ISP.
Recently our ISP saint to us that this smtp is to be replaced from another. So they sent to us the new smtp address to replace the old smart host. But with the new smtp address we can not send e-mail and the exchange return this message:
Cannot send the message. 530 Authentication Required
I know that this smtp requires authentication but where in exchange can set up this?
Thanks
The smart host is the smtp server of our ISP.
Recently our ISP saint to us that this smtp is to be replaced from another. So they sent to us the new smtp address to replace the old smart host. But with the new smtp address we can not send e-mail and the exchange return this message:
Cannot send the message. 530 Authentication Required
I know that this smtp requires authentication but where in exchange can set up this?
Thanks
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Sorry to say, but those are very poor instructions.
If you follow those instructions and later on try to migrate to another server you will find that email doesn't flow as expected.
NEVER EVER put a smart host on the SMTP Virtual server.
Leave it configured it on the SMTP Connector.
NEVER EVER change the authentication settings on the SMTP Virtual server. You set the authentication details on the properties of the SMTP Connector.
The SMTP virtual server should ideally be left in an almost default configuration.
Simon.
If you follow those instructions and later on try to migrate to another server you will find that email doesn't flow as expected.
NEVER EVER put a smart host on the SMTP Virtual server.
Leave it configured it on the SMTP Connector.
NEVER EVER change the authentication settings on the SMTP Virtual server. You set the authentication details on the properties of the SMTP Connector.
The SMTP virtual server should ideally be left in an almost default configuration.
Simon.
ASKER
Sembee2,
yes you are right.. As I have seen with the previous smtp the only setup was the "Forward all mail through this connector to the following smart hosts" in the connector and nothing in the smart host of the smtp virtual server. But where in the connector can I setup the port. My ISP said to me that the port is not the default 25 but 587... I can not find anything in the connector about pot setting... but the smtp virtual server has!
yes you are right.. As I have seen with the previous smtp the only setup was the "Forward all mail through this connector to the following smart hosts" in the connector and nothing in the smart host of the smtp virtual server. But where in the connector can I setup the port. My ISP said to me that the port is not the default 25 but 587... I can not find anything in the connector about pot setting... but the smtp virtual server has!
If you need to use another port then you will have to setup a second SMTP virtual server. One for each port. Then configure the SMTP connector to use the Second SMTP virtual server.
The SMTP connector doesn't have the port configuration, it is just a configuration - I have used the metaphor that the SMTP virtual server is the road, the SMTP Connector is the signpost.
Simon.
The SMTP connector doesn't have the port configuration, it is just a configuration - I have used the metaphor that the SMTP virtual server is the road, the SMTP Connector is the signpost.
Simon.
ASKER
I have tried all the suggestions but when I send e-mail exchange returns me:
#5.7.1 smtp;550 5.7.1 Client does not have permissions to send as this sender
#5.7.1 smtp;550 5.7.1 Client does not have permissions to send as this sender
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
But this message is from MY exchange. Who is the "Client" and who is the "sender".
Also I tried to make an account in outlook with these settings (username,password,port 587,TLS) only to see if the smtp works and was ok!!! So the operator of the smart host (is our ISP) said to us that if the settings worked in the outlook then they can't help further!!!
Also I tried to make an account in outlook with these settings (username,password,port 587,TLS) only to see if the smtp works and was ok!!! So the operator of the smart host (is our ISP) said to us that if the settings worked in the outlook then they can't help further!!!
The NDR is generated by your server. That doesn't mean your server is the source of the problem, just that is where the message got stopped. In this scenario it means the next hop refused the message - which is the msart host.
The response you got from your ISP isn't surprising. Most ISPs are only interested in finding ways to close the call as quickly as possible.
Did you setup the SMTP connector to authenticate when sending?
Are you unable to get a static IP address and PTR? You don't have to use a smart host. If port 25 is open to the internet, you have a static address and the ISP will set the PTR then you can deliver directly.
Simon.
The response you got from your ISP isn't surprising. Most ISPs are only interested in finding ways to close the call as quickly as possible.
Did you setup the SMTP connector to authenticate when sending?
Are you unable to get a static IP address and PTR? You don't have to use a smart host. If port 25 is open to the internet, you have a static address and the ISP will set the PTR then you can deliver directly.
Simon.
ASKER
As I have mentioned before I tried all the ways previously suggested from experts so and connector's authentication!
The reason for this choice (smart host) is to avoid security issues... but if we can not better then we will change it...
We have static IP, port 25 is open but I do not know what did you mean about PTR. I know that a PTR has to do with reverse DNS but can you be clearer? What exactly we have to do about PTR? We have access to our DNS records (now) so ISP has nothing to do...
Thanks
The reason for this choice (smart host) is to avoid security issues... but if we can not better then we will change it...
We have static IP, port 25 is open but I do not know what did you mean about PTR. I know that a PTR has to do with reverse DNS but can you be clearer? What exactly we have to do about PTR? We have access to our DNS records (now) so ISP has nothing to do...
Thanks
PTR is a reverse DNS. Reverse DNS is a PTR.
What security issues do you think you are avoiding by using a smart host? You are trying your email delivery and reputation to another service you have no control over.
If you have a static IP address then get the PTR set and deliver email directly. You can then set SPF records etc and lock things down. Most Exchange servers will deliver email directly - for me smart host use is the last choice, not the first.
Simon.
What security issues do you think you are avoiding by using a smart host? You are trying your email delivery and reputation to another service you have no control over.
If you have a static IP address then get the PTR set and deliver email directly. You can then set SPF records etc and lock things down. Most Exchange servers will deliver email directly - for me smart host use is the last choice, not the first.
Simon.
ASKER
The problem is with our ISP... we need a username/password to allow us to relay...!!!
They harassed us... because they did not understand what they say
They harassed us... because they did not understand what they say
Tahir