Zimbra offers Open Source email server software and shared calendar for Linux and the Mac
 
Go Back   Zimbra - Forums > Zimbra Collaboration Suite > Administrators
Reload this Page SMTP auth not working outside of ZCS's subnet

Welcome to the Zimbra - Forums!
Welcome, if you would like to post a comment please register. We also encourage you to explore all things Zimbra with our team and members of the community.

Reply
 
LinkBack Thread Tools Display Modes
  #1 (permalink)  
Old 02-07-2007, 04:50 PM
dvb dvb is offline
Intermediate Member
  
Posts: 18
Default SMTP auth not working outside of ZCS's subnet
Greetings.

Our ZCS server is set up to use our main server (we're an ISP) as the relay MTA. However, we still want to allow SMTP connections from authenticated users (and of course the relay MTA). Unfortunately, SMTP authentication does not work when the sender is connecting from a different subnet - they get a 554 Relay Access Denied rejection. If I put that same machine on the same subnet as ZCS, SMTP authentication works fine. It also works fine if I add the external IP address of the host to the zimbraMtaMyNetworks list, but that's not what I want.

Is this one of those unfortunate "this behavior is by design" issues or am I possibly doing something wrong?

Dave
Reply With Quote
  #2 (permalink)  
Old 02-08-2007, 12:17 AM
Zimbra Consultant & Moderator
  
Posts: 11,518
Default
SMTP Authentication from an external client works fine otherwise I wouldn't be able to use my phone to send mail (and I can). Have you checked the authentication settings in the admin ui are correct?
__________________
Regards


Bill
Reply With Quote
  #3 (permalink)  
Old 02-08-2007, 06:55 AM
OpenSource Builder & Moderator
  
Posts: 1,158
Default
trawl the logs and make sure the client is 100% definitely for-sure absolutely actually attempting smtp-auth. most problems come down to this! also make sure zimbra is set to allow non-tls smtpauth and/or the client is set to try tls.
Reply With Quote
  #4 (permalink)  
Old 02-08-2007, 02:34 PM
dvb dvb is offline
Intermediate Member
  
Posts: 18
Default
Quote:
Originally Posted by dijichi2 View Post
trawl the logs and make sure the client is 100% definitely for-sure absolutely actually attempting smtp-auth. most problems come down to this! also make sure zimbra is set to allow non-tls smtpauth and/or the client is set to try tls.
I tried the same clients on both a DSL connection and the internal LAN. When on the internal LAN, everything worked and the logs showed that authentication was indeed taking place.

Be that as it may, I am now suspicious of our firewall (Symantec Enterprise Firewall 6.5.3, formerly known as Raptor). Although I added the correct rules to allow access and it is working to the extent of allowing the other server to act as the default MTA for ZCS, I think the firewall is disallowing some of the information being sent when someone attempts to authenticate and it won't allow me to allow port 25 without the SMTP proxy.

We may just set up the SMTP authentication on the other server for now and see if we can fix this later when we switch to a firewall appliance.

Thanks.

Dave
Reply With Quote
Reply

« Previous Thread | Today's Posts or Week's Posts | Next Thread »

Thread Tools
Display Modes
Linear Mode Linear Mode


Similar Threads

Product Information

Why Join?

Registering let's you ask questions, makes it easier to search, displays any files attached to posts, and notifies you about replies.

Zimbrablog.com


Home - Blog - Contact Us - Archive - Top


 

Search Engine Optimization by vBSEO 3.1.0