Problem to Email server

Hi,

Currently in my domain

www.searchhouselive.com

I have already created MX record, butI do not know what should be relevant Incoming and Outgoing Email servers. I have already set up hMailServer in the server.

Domain is published in Namecheap. com properly while I am to set up Email server on my own server using hMailServer.
LVL 12
HuaMin ChenProblem resolverAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

MASEE Solution Guide - Technical Dept HeadCommented:
Hi HuaMin,
Please make sure your MX record is correct to receive email.
If your IP is corect (i.e.182.173.77.208) your NAT is not correct.
Please make sure port 25 is reaching your server. As of now it is not reaching. Either NAT is incorrect or port 25 is blocked by the server.
https://mxtoolbox.com/SuperTool.aspx?action=mx%3asearchhouselive.com&run=toolpage# 
Once this is done. Please check this video and configure teh rest.
https://www.youtube.com/watch?v=kxcYVL25erA

Thanks
MAS
HuaMin ChenProblem resolverAuthor Commented:
Is it true that TCP port 25 should be open?
Sajid Shaik MSystem AdminCommented:
yes thats true ... smtp uses port 25 along with 110 pop3,

check the setup

https://support.prolateral.com/index.php?/Knowledgebase/Article/View/178/35/how-do-i-set-up-outbound-smtp-on-hmailserver

2.jpg
as it's appearing your IP pointed to MX 182.173.77.208

use this ip in SMTP relay..(remote hostname)

you can use any of the 25 or 587 or 8025 or 2525 port for the SMTP but the best option is use 25

and incoming 110

all the best
Get a highly available system for cyber protection

The Acronis SDI Appliance is a new plug-n-play solution with pre-configured Acronis Software-Defined Infrastructure software that gives service providers and enterprises ready access to a fault-tolerant system, which combines universal storage and high-performance virtualization.

HuaMin ChenProblem resolverAuthor Commented:
Many thanks.

To your current example like

mxXXXXXX.smtp-engine.com

What should be XXXXXX, while my domain is

www.searchhouselive.com
yo_beeDirector of Information TechnologyCommented:
Are you using a third party mail filter (external to your system) that has a completely different Domain Name?

That is what your mx record needs to point to.

For example. My domain name is acme.com, but my mail is first filtered through mimecast. So my mx record for acme.com might be us1-smtp.mimecast.com. As you can see it note my Domain Name, but my public DNS records tell people that my mail exchange is mimecast and it should send it there. Once it hits mimecast then mimecast system will route it accordingly based on the configuration.

Now if you do not have a third party mail filter like describe above and all mail should be sent to your mail server directly then your mx record should point to your public ipaddress and your firewall will have the instructions to route all smtp traffic to your mail server.

As mentioned by the following EE member this is NAT'ed from your public address to your internal address for your mail server on port 25.
HuaMin ChenProblem resolverAuthor Commented:
I am not using third party mail filter.

I declared MX record also on Namecheap.com, from which I got my current domain www.searchhouselive.com.
yo_beeDirector of Information TechnologyCommented:
Is that where your email server resides?  I am guessing no based on the thread.  

Your mx record needs to point to your public ISP address.  If you type "what's my ip" from a web browser on your mail server this will return your ipaddress. This is what your mx record should point to. From there you need to make sure your firewall is configure route your smtp traffic to your internal mail server address. This is called NAT (Network Address Translation).
Example:
182.173.77.20 -> 192.168.0.20 for port 25.
HuaMin ChenProblem resolverAuthor Commented:
Here is my setting
27f.pngBut I still have got this issue

Task 'Huamin@SearchHouseLive.com - Sending' reported error (0x800CCC0D) : 'Cannot find the e-mail server. Verify the server information in your account properties.'
Task 'Huamin@SearchHouseLive.com - Receiving' reported error (0x80040900) : 'The server name you entered cannot be found on the network (it might be down temporarily). Verify that you are online and that the server name is correct.'

Open in new window

yo_beeDirector of Information TechnologyCommented:
Are you trying this from the inside or outside your network?  Internally you do not need an mx record.

Also what type of email server?
HuaMin ChenProblem resolverAuthor Commented:
I am configuring Email account within the server and have got the current issue.

I am still having the same problem, even if I've already created Firewall Inbound and Outbound rules on TCP ports 25, 110.
HuaMin ChenProblem resolverAuthor Commented:
Any other help?
yo_beeDirector of Information TechnologyCommented:
Are you configuring the firewall rule on the server or your firewall?

[embed=file 1344843]
Simple_EMAIL.png
HuaMin ChenProblem resolverAuthor Commented:
I created the firewall rules on ports 25, 110, of current server.

Where should I put 192.168.0.20?
yo_beeDirector of Information TechnologyCommented:
I am using 192.168.0.20 as a fillin for what ever your internal subnet is.  I do not know what IP scheme you use. Please substitute 192.168.0.20 for whatever your email server internal IP is.  

The firewall rule needs to be on the Edge firewall not the server.    

With not really having a detailed picture of your system I am taking liberties here.  From the replies to our remarks your knowledge seems very limited when it come to networking.  You may need some professional services to setup your system properly.  

Please fill in these blanks.

  • What make and model firewall __________?
  • What Email server software______________?
  • What's your internal subnet______________?
  • Is 182.173.77.20 really your ISP address__________?
HuaMin ChenProblem resolverAuthor Commented:
What make and model firewall I have created Inbound and outbound firewall rules on TCP port 25, 110?
What Email server software hMailserver?
What's your internal subnetsee following?
27h.pngIs 182.173.77.208 really your ISP addressYes?
yo_beeDirector of Information TechnologyCommented:
So you have no physical firewall between the Internet and your server?
You are asking for some real problems.

Is this a lab setup?
HuaMin ChenProblem resolverAuthor Commented:
How to resolve problem now, as I am stuck with issue to send and receive Email?
arnoldCommented:
Often ISPs these days block outgoing port 25 connection from retail, non-business type customers.

You should create another rule for port 587 to port 25 on your firewall. The additional thing to consider is that you shoukd check the box requiring username/password to send. Usually you onky accept messages destined to you, you would not allow others to send through your server to other domains unless the user sending authenticates to avoid having an open relay that spammers will locate, and will abuse.
yo_beeDirector of Information TechnologyCommented:
I just tried to TELNET to you email server with no reply.  Are you 100% sure that 182.173.77.20 is your public IP & there is no NATing in your environment?
HuaMin ChenProblem resolverAuthor Commented:
Thanks to all.

Yo Bee
IP is

182.173.77.208

You missed one 8 at the end of it
yo_beeDirector of Information TechnologyCommented:
You may need to contact your ISP and ask them if you are able to host your own Email Server.  As Arnold mentioned there maybe a restriction on certain or all ports.  

I really think you have a network configuration issue and you are not understanding networking.  It is not normal for you to have a public address assigned to a server. Normally there is something is the middle to segment and isolate your private network.

Here is a link to help you testing your server with Telnet.  Internally it should point to your private IP or the server.  
https://technet.microsoft.com/en-us/library/aa995718(v=exchg.65).aspx
yo_beeDirector of Information TechnologyCommented:
I just successfully Telnet to your server.  
So it looks like your are able to  communicate with the outside world.

I still find it strange that you do not have a private network.
HuaMin ChenProblem resolverAuthor Commented:
Does it mean I must have one 2nd IP with 192.168..., in this server? Should this be 2nd IP, right? And let 182.173.77.208 be 1st IP, right?
yo_beeDirector of Information TechnologyCommented:
I do not know how your system is setup. It is possible that you have two NIC's. One assigned the public ip and one for the private, but I do not see what you have.

By you even asking these questions seems to me that your knowledge of basic networking is very limited. This being the case you will have lots of difficulty assessing, troubleshooting and configuring your network properly without exposing yourself to malicious attacks.  

You might want to hire professional services to assist you with configuring your edge environment correctly.
HuaMin ChenProblem resolverAuthor Commented:
Yo Bee,
Can you please help, to this? I also ever used Exchange server on other server and I did not have extra IP to it, and it was fine to work.

Arnold,
I have also enabled port 587 and it does not help.
yo_beeDirector of Information TechnologyCommented:
Without knowing your system and being that you are not able to supply us with accurate details of your system it is almost impossible to assist.  

If you run ipconfig /all from a command prompt do you get any internal IP address for your server.

Please post the complete output. This will help us try to isolate the issue.
HuaMin ChenProblem resolverAuthor Commented:
Yo Bee,
Appreciated a lot!

FYI
C:\Users\Administrator>IPCONFIG /ALL

Windows IP Configuration

   Host Name . . . . . . . . . . . . : WIN-P7GECP48KI4
   Primary Dns Suffix  . . . . . . . : SearchHouseLive.com
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : SearchHouseLive.com

Ethernet adapter Ethernet:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Intel(R) PRO/1000 MT Network Connection
   Physical Address. . . . . . . . . : 00-1C-42-BE-84-8F
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv4 Address. . . . . . . . . . . : 182.173.77.208(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Default Gateway . . . . . . . . . : 182.173.77.1
   DNS Servers . . . . . . . . . . . : 127.0.0.1
   NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.{779CB284-0C41-4868-BD22-32D745F50638}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter 6TO4 Adapter:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft 6to4 Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2002:b6ad:4dd0::b6ad:4dd0(Preferred)
   Default Gateway . . . . . . . . . : 2002:c058:6301::1
   DHCPv6 IAID . . . . . . . . . . . : 385875968
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-22-BC-85-4D-00-1C-42-BE-84-8F

   DNS Servers . . . . . . . . . . . : 127.0.0.1
   NetBIOS over Tcpip. . . . . . . . : Disabled

Open in new window

arnoldCommented:
To summarize, your server is directly exposed to the  Internet, using Windows firewall to restrict/limit exposure of the server to attack.

I am unfamiliar with the mail server you chose, but delivery address in your server if I interpret the meaning should not be itself.


You shoukd identify the source of each picture you post to make it clear whether it is server side, or email client side.
yo_beeDirector of Information TechnologyCommented:
So you have server with a single NIC configured with and external IP.  
What IP does your client computer have and is that the one you tested from?
HuaMin ChenProblem resolverAuthor Commented:
Thanks to all.

Yo Bee,
I am do the test, on the same machine, using Outlook, to see if it's OK to that Email account of hMailserver, to be able to send/receive messages?
yo_beeDirector of Information TechnologyCommented:
You really should not have Outlook installed on a machine running Exchange.  There could be some conflicts.
Do you have a network or are you just looking to setup an email server.

As I stated earlier you seem to have very limited knowledge of network and now it looks like the same for Exchange.  

I think you are setting yourself up for some serious issues by having your Exchange server outward facing (internet).   You should really implement a physical firewall to isolate your entire network.  I do not know how many clients (internally) you plan on hosting, but your current setup will not work.
HuaMin ChenProblem resolverAuthor Commented:
I am having problem to work with hMailServer on this server and this is what I want. I now do not have Exchange server on current server.

I can test client instead on other machine to connect to the server remotely. But I currently used Outlook to only check if email service is working fine on Email server.
arnoldCommented:
Check hmail's local user configuration.
Unlike exchange that uses AD .....
HuaMin ChenProblem resolverAuthor Commented:
Hi Arnold,
Can I have more details to your comment? hMailserver is support AD user of Windows server, right?

27i.png
HuaMin ChenProblem resolverAuthor Commented:
By issuing

telnet
o localhost 25

I've got
27l.png
(after some time)
yo_beeDirector of Information TechnologyCommented:
You established a smtp connect successful from what your screenshot looks like.

Are you using Exchange or another type of email server?
I am getting the impression that it is not exchange.
HuaMin ChenProblem resolverAuthor Commented:
I now only have hMailserver on this Win 2012 server.

Exchange server was used in the past only.
HuaMin ChenProblem resolverAuthor Commented:
What can be the reason of "time out" issue in above?
arnoldCommented:
Please note my example, you need to send the commands to indicate a message ....
Usually 60,120 seconds is how long the server will wait to receive the message before closing the connection if/when idle.
HuaMin ChenProblem resolverAuthor Commented:
Thanks.

Any reason to the above "time out" issue?
arnoldCommented:
You did not type anything for it not to time out. I.e. telnet opens a conversation, but you did not speak.  

In your other question on this subject, you have the info on how to exchange information in an SMTP session.

ehlo servername
mail from: <youremailaddress>
rcpt to: <emailaddressontheserver>
data
Subject: test
From: <youremailaddress>
To: <emailaddressontheserver>

this is a test
.

note following the first three you should receive a response from the server 2xx for the first three and 3xx as a response to data. then when the (.) is seen, you should get another 2xx message confirming your message was accepted into the queue/processing.

Many servers behave like people answering calls when no one on the other side is talking. They would wait a defined amount of time, and then hang up. This is what your server did, having received no input, it terminated the session.

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
HuaMin ChenProblem resolverAuthor Commented:
Many many thanks Arnold.

Does the following mean the message has been sent fine? I checked my Email and do not get it.
27m.png
arnoldCommented:
don't know, this is an interactive process, you can not copy and paste all in one shot.
Try each line at a time until after you type data.

Looking at the log of the mail server will shed more info, if logging is not enabled enable it.

Logs are the best way to determine what might be going on as it records what it is doing and what happened...
HuaMin ChenProblem resolverAuthor Commented:
Many thanks Arnold.
Here is current log file
"ERROR"	1440	"2018-06-27 12:50:01.973"	"Severity: 1 (Critical), Code: HM5028, Source: ADOConnection::Connect, Description: Error when connecting to database. Microsoft OLE DB Provider for SQL Server Cannot open database "hMailserver" requested by the login. The login failed. Check your database settings in hMailServer.ini."
"ERROR"	1440	"2018-06-27 12:50:07.038"	"Severity: 1 (Critical), Code: HM5028, Source: ADOConnection::Connect, Description: Error when connecting to database. Microsoft OLE DB Provider for SQL Server Cannot open database "hMailserver" requested by the login. The login failed. Check your database settings in hMailServer.ini."

Open in new window


And I also checked no problem within hMailServer.ini file.
arnoldCommented:
Well,

the error points to an inability of the HMailserver to connect to the Database to determine info. It further includes what you should do which is check the config file hMailServer.ini to make sure the information on how the database can be accessed is correct.

Unfortunately, I am not familiar with HMailServer so not sure whether the DATabase relates to the entire setup of the email users and .....

use sql server management suite/express and see whether you can login using the sql credentials in the config file into the sql server...
HuaMin ChenProblem resolverAuthor Commented:
Here is hMailServer.ini (but password is encrypted). Yes, I have no problem to log into SSMS and connect to hMailserver.

[Directories]
ProgramFolder=C:\Program Files (x86)\hMailServer
DatabaseFolder=
DataFolder=C:\Program Files (x86)\hMailServer\Data
LogFolder=C:\Program Files (x86)\hMailServer\Logs
TempFolder=C:\Program Files (x86)\hMailServer\Temp
EventFolder=C:\Program Files (x86)\hMailServer\Events
[GUILanguages]
ValidLanguages=english,swedish
[Security]
AdministratorPassword=12b348791e3e0c7dc5ea083819c345a7
[Database]
Type=MSSQL
Username=sa
Password=3f3d0688403d9cc015b3b560fd77be8f
PasswordEncryption=1
Port=0
Server=WIN-P7GECP48KI4\SS2012EXPR
Database=hMailserver
Internal=0

Open in new window

arnoldCommented:
Often, you should not use SA for DB logins.
You should setup a seperate limited users with access only to the HMailserver DB.

The error points to an issue hmailserver is having accessing the DB.

Check the eventlogs to see whether you have secureity/application sql login failures.
since you are using sa, ...
within ssmse, connect to the server using sa, go to the security add an sql login for hmailserver. then attach it as owner, dbo schema to the hmailserver databases.
confirm the account works, then reconfigure hmailserver settings to use the new hmailserver account. see if it makes a difference,
HuaMin ChenProblem resolverAuthor Commented:
Appreciated a lot Arnold and I will get back to you ASAP.
HuaMin ChenProblem resolverAuthor Commented:
Arnold,
I changed the server and then again problem arose that I did not receive the mail, even if I've finished the following on server.
28b.png
arnoldCommented:
You are relaying through the server, it seems to have accepted the message. Looking through the log or looking in the spam folder on the destiantion, gmail.com to see whether the message was delivered there.

Look at the logs of the hmailserver, and see whether it connected to a GMAIL server and successfully submitted the message.
HuaMin ChenProblem resolverAuthor Commented:
Yes, I checked in Gmail spam folder and did not get the Email (last time it was fine). hMailserver is creating SQL server schema and I can see DB schema was also created. I cannot identify the reason in Configuration file of hmailserver.
arnoldCommented:
I am unfamiliar with Hmailserver.

Accessing the logs, configuring the server to log and then looking through those when you make an attempt to see what is going on.
The response you received, 250 the message was accepted now the logs will tell you what happened to the message, is it still in the queue, was it delivered, was it rejected and an attempt was made to send it back to the sender. and finally it could not bounce so it gave up on the message dropping it.
HuaMin ChenProblem resolverAuthor Commented:
Still appreciated!
Is it any problem below?
28d.png
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Email Servers

From novice to tech pro — start learning today.