Exchange Server Forums
Forums |
Register |
Login |
My Profile |
Inbox |
RSS 
|
My Subscription |
My Forums |
Address Book |
Member List |
Search |
FAQ |
Ticket List |
Log Out
RE: Open Relay Test Failed
|
Users viewing this topic:
none
|
Logged in as: Guest
|
Login  | |
|
 Limited time MSExchange.org offer! -- 1.Sep.2008 1:00:00 PM
|
|
TechGenix and SolarWinds have partnered to provide free copies of SolarWinds Exchange Monitor to all visitors who join the MSExchange.org Forums. SolarWinds Exchange Monitor is a handy desktop dashboard that continuously monitors Microsoft Exchange to deliver real-time insight into Exchange services, mail queue sizes, and host server health. Learn more about Exchange Monitor and the free offer!
|
RE: Open Relay Test Failed - 17.Oct.2007 2:48:41 PM
|
|
|
a.grogan
Posts: 1887
Joined: 12.Apr.2005
From: London
Status: offline
|
I have "Only the List Below" configured.
Cheers
A
_____________________________
Andy Grogan
MSExchange.org Forums Moderator
For my general ramblings about Exchange please visit my blog:
W: http://telnetport25.wordpress.com/
M: manifoldmaster@gmail.com
|
|
|
|
|
RE: Open Relay Test Failed - 17.Oct.2007 2:51:33 PM
|
|
|
defiantclass1
Posts: 183
Joined: 17.Jul.2006
Status: offline
|
I changed the ip setting to the address of the server and restarted the services. I remember you mentioning waiting a while before testing. I of course went ahead and ran the test anyways and came up with the same results, but I will wait and try again later. I 'll let you know. Thanks for all your help!
|
|
|
|
|
RE: Open Relay Test Failed - 17.Oct.2007 2:56:57 PM
|
|
|
a.grogan
Posts: 1887
Joined: 12.Apr.2005
From: London
Status: offline
|
No problem I like helping, what I will do, is if we are still having problems I will record a video of my settings so you can have a look and down load it.
Cheers
A
_____________________________
Andy Grogan
MSExchange.org Forums Moderator
For my general ramblings about Exchange please visit my blog:
W: http://telnetport25.wordpress.com/
M: manifoldmaster@gmail.com
|
|
|
|
|
RE: Open Relay Test Failed - 17.Oct.2007 6:53:23 PM
|
|
|
Yorgy
Posts: 89
Joined: 20.Sep.2006
Status: offline
|
This article looks interesting by Microsoft that may be helpful for what you are trying to do and identify the issue.
http://support.microsoft.com/default.aspx?scid=kb;en-us;304897
Have you also by any chance checked the Event Logs for Application and System for any possible event ID's that may be associated, if yes, can you please post error code?
HIH
Yorgy
_____________________________
Life is a zoo in a jungle!
|
|
|
|
|
RE: Open Relay Test Failed - 18.Oct.2007 9:44:17 AM
|
|
|
defiantclass1
Posts: 183
Joined: 17.Jul.2006
Status: offline
|
Well, I really appreciate the offer. Yorgy, this article got me excitted as I thought perhaps the issue was in how my server was handling the NDRs. However, after changing that setting to it's default position (Accept for further processing) from where I had it (Delete) the scan still shows that I am Open. This is a setting that I am still not certain about. I am assuming the Accept position means that my anti-virus/spam software and the block lists I have included in my Connection filter will determine what to do about the NDRs. But I don't see any real setting in my Anti-virus/spam that handles NDRs. So when it says "Accept for further processing" I don't know what processes it is refering to.
a.grogan- It seems like a drastic measure to shoot a video and I hate to put you through that, but I don't know what else to do. I am very interested in in knowing your settings so I can compair mine. Both, settings in Mail Delivery and SMTP, as well as any other you might think are important.
I've read a great deal about all this by now, I'm pretty stumped. Thanks again.
|
|
|
|
|
RE: Open Relay Test Failed - 18.Oct.2007 10:45:27 AM
|
|
|
defiantclass1
Posts: 183
Joined: 17.Jul.2006
Status: offline
|
One piece of additional info, as a test, in the smtp virtual server, under the Connection button, I opted to allow "Only the list below" and select my domain. I then ran the BPA test again and I did not receive the Open Reley message. Of course I didn't receive any mail from the outside either, so I set it back right away and started receiving mail again. And I again failed the Open Relay test.
Just thought that might spark an idea.
|
|
|
|
|
RE: Open Relay Test Failed - 18.Oct.2007 1:00:02 PM
|
|
|
Yorgy
Posts: 89
Joined: 20.Sep.2006
Status: offline
|
Here are my settings for what I use in my lab; you may try considering on matching them up with your configuration to see if you get different results.
Properties of SMTP Virtual Server-->
General Tab/I have the IP Address set instead of all unassigned/Limit number of connections unchecked.
Access/Authentication/Anonymous/Basic/Integrated
Certificate not enabled
Connection/All except the list below
Relay/Only the list below/No IP addresses listed/Allow all computers unchecked
Messages/All default settings
Delivery/Advanced-local DNS Server FQDN-No external DNS Servers IP Addresses listed-Do not perform reverse lookup
Outbound connections default
Outbound security set to anonymous only
HIH
Yorgy
_____________________________
Life is a zoo in a jungle!
|
|
|
|
|
RE: Open Relay Test Failed - 18.Oct.2007 1:17:18 PM
|
|
|
a.grogan
Posts: 1887
Joined: 12.Apr.2005
From: London
Status: offline
|
HIya chap,
Please follow the link that is provided in this post - it contains two videos - one show me relaying off of my lab smtp server from my local machine, and the other shows the settings on my SMTP virtual server.
http://domain564941.sites.fasthosts.com/msex/smtp.rar (you will need WinRar or 7Zip to extract).
The configuration on the SMTP virtual server passes the EXBPA - and also accepts mail from my production mail system at home.
Cheers
A
_____________________________
Andy Grogan
MSExchange.org Forums Moderator
For my general ramblings about Exchange please visit my blog:
W: http://telnetport25.wordpress.com/
M: manifoldmaster@gmail.com
|
|
|
|
|
RE: Open Relay Test Failed - 18.Oct.2007 2:11:02 PM
|
|
|
defiantclass1
Posts: 183
Joined: 17.Jul.2006
Status: offline
|
Guys,
We got it! Andy's video proved to be a difference maker!!! The problems were 1) in the Access tab, Authentication button. The Authenticated User permissions had Allow Relay checked. (I would think this would be okay though...authenticated users to the domain should be allowed to relay if they want to, although I don't care cause nobody here would want to) and 2) under the Relay button, I had the right check boxes checked, but I had internal ip addresses granted (I would also think this should be okay, but again, I don't care as long as it works correctly.). In the process I also switched RBLs to SpamHaus zen.
So between one or both of these, I now pass the relay test! Congratulations guys, and thank you for your extra long effort!!!!!!! I really appreciate it.
|
|
|
|
|
RE: Open Relay Test Failed - 19.Oct.2007 11:42:56 AM
|
|
|
a.grogan
Posts: 1887
Joined: 12.Apr.2005
From: London
Status: offline
|
Great news - glad I could help.
Cheers
A
_____________________________
Andy Grogan
MSExchange.org Forums Moderator
For my general ramblings about Exchange please visit my blog:
W: http://telnetport25.wordpress.com/
M: manifoldmaster@gmail.com
|
|
|
|
|
RE: Open Relay Test Failed - 17.Dec.2007 11:32:46 AM
|
|
|
jvalenzuela
Posts: 12
Joined: 4.Jul.2007
Status: offline
|
Hello everyone
I have the same configuration on my server but still failing the relay test.
Relay test 8
>>> RSET
<<< 250 2.0.0 Resetting
>>> MAIL FROM:<spamtest@[AA.BB.CC.DD]>
<<< 250 2.1.0 spamtest@[AA.BB.CC.DD]....Sender OK
>>> RCPT TO:<"securitytest@abuse.net">
<<< 250 2.1.5 "securitytest@abuse.net"@my.domain.com
Is there a way to set the exchange to accept incomming mails only for valid accounts? or avoid receiving mail with characters like "" (as example)?
Thanks,
Jorge
|
|
|
|
|
RE: Open Relay Test Failed - 18.Dec.2007 1:23:02 PM
|
|
|
defiantclass1
Posts: 183
Joined: 17.Jul.2006
Status: offline
|
Jorge,
To accept mail for only valid accounts, I would think the best way would to go to Global Settings>>>Message Delivery>>>Properties. In the Recipient Filtering tab check the box that says "Filter recipients who are not in the directory".
I don't know about receiving mail with "" in the address. But the above setting might help with that by default.
For me, I was failing the relay test because the header files of my outgoing email showed the physical name of my server which does not match my email domain name. I was able to change that by going to the SMTP Server>>>Properties>>>Delivery tab and entering the server name I wanted to appear in the Fully-qualified domain name field.
Now when I send an email, I can look in the header and it says the email came from the server I wanted it to say and I am no longer failing the relay test.
|
|
|
|
 New Messages |
 No New Messages |
 Hot Topic w/ New Messages |
 Hot Topic w/o New Messages |
 Locked w/ New Messages |
 Locked w/o New Messages |
|
 Post New Thread
Reply to Message
Post New Poll
Submit Vote
Delete My Own Post
Delete My Own Thread
Rate Posts |
|
Printable Version
