| Author |
Message |
Guest
|
 Posted:
Mon Dec 19, 2005 5:58 pm Post subject:
Open Relay |
|
|
Hi,
I have a Windows2003 SBS and I have been having issues with sending
emails to AOL.After checking with AOL and my ISP, I was told that the
problem is caused by an open relay on my server.
I have tested this with some sites such as abuse.net and they did not
find an open relay. I followed a test described in
http://www.windowsitpro.com/Articles/Index.cfm?ArticleID=7696&DisplayTab=Article
and it seems I might have an open relay! It says to telnet to the
server (on port 25) and enter the following:
1.HELO me
The server will respond with 250 OK and identify your IP address
and possibly your host name. (it did not, it just said "250 requested
mail action okay, completed")
2. MAIL FROM: someaddress@somedomain.com
Again, the server will respond with 250 OK. (I got: "250
requested mail action okay, completed")
3. RCPT TO: nobody@afakedomain.com
The server will respond with 550 Relaying prohibited. (I got:
"250 requested mail action okay, completed")
4. Using a valid address from your GAL, enter RCPT TO:
thegaladdress@yourdomain
The IMS will reply with 250 OK when it accepts the address. (I
got:"250 requested mail action okay, completed")
5. To close the session, type QUIT
In step 3, I was supposed to see "relaying prohibited" but it says it
was okay. Does this mean open relay?
Also, I checked the Default SMTP Virtual Server Properties on Exchange
and under "Relay Restrictions" I have "these computers may relay" and
have the server's local IP and 127.0.0.1 listed. Also, "allow all
computers which successfully authenticate" checked.
Under "Authentication", the following are checked:
Anonymous access, Basic Authentication, Integrated Windows
Authentication.
Could someone please tell me if these settings are incorrect? How else
can I check for, and fix, open relay?
|
|
| Back to top |
|
 |
John Oliver, Jr. [MVP]
Guest
|
| Posted:
Tue Dec 20, 2005 12:25 am Post subject:
Re: Open Relay |
|
|
Out of the box SBS 2003 with Exchange 2003 is set "NOT" to relay. I would
verify again at http://www.vamsoft.com/orf/openrelaytest.asp Then if OK, I
would also check at www.dnsstuff.com for a Reverse DNS Record for your
domain. This is the more likely reason that AOL is rejecting your mail.
--
John Oliver, Jr.
MCSE, MCT, CCNA, Exchange MVP
Microsoft Certified Partner
<ashkaan57@hotmail.com> wrote in message
news:1135012501.001608.51560@g47g2000cwa.googlegroups.com...
| Quote: | Hi,
I have a Windows2003 SBS and I have been having issues with sending
emails to AOL.After checking with AOL and my ISP, I was told that the
problem is caused by an open relay on my server.
I have tested this with some sites such as abuse.net and they did not
find an open relay. I followed a test described in
http://www.windowsitpro.com/Articles/Index.cfm?ArticleID=7696&DisplayTab=Article
and it seems I might have an open relay! It says to telnet to the
server (on port 25) and enter the following:
1.HELO me
The server will respond with 250 OK and identify your IP address
and possibly your host name. (it did not, it just said "250 requested
mail action okay, completed")
2. MAIL FROM: someaddress@somedomain.com
Again, the server will respond with 250 OK. (I got: "250
requested mail action okay, completed")
3. RCPT TO: nobody@afakedomain.com
The server will respond with 550 Relaying prohibited. (I got:
"250 requested mail action okay, completed")
4. Using a valid address from your GAL, enter RCPT TO:
thegaladdress@yourdomain
The IMS will reply with 250 OK when it accepts the address. (I
got:"250 requested mail action okay, completed")
5. To close the session, type QUIT
In step 3, I was supposed to see "relaying prohibited" but it says it
was okay. Does this mean open relay?
Also, I checked the Default SMTP Virtual Server Properties on Exchange
and under "Relay Restrictions" I have "these computers may relay" and
have the server's local IP and 127.0.0.1 listed. Also, "allow all
computers which successfully authenticate" checked.
Under "Authentication", the following are checked:
Anonymous access, Basic Authentication, Integrated Windows
Authentication.
Could someone please tell me if these settings are incorrect? How else
can I check for, and fix, open relay?
|
|
|
| Back to top |
|
|
Jonathan Norris
Guest
|
| Posted:
Tue Dec 20, 2005 12:51 am Post subject:
Re: Open Relay |
|
|
It is also possible your ISP is blocked as well. I had that issue at home
using a Commercial Comcast cable modem service. AOL basically blacklisted
their entire subnet.
Basically what I ended up having to do is go through a third party service
that acts as my SMTP gateway and then forwards it to my Exchange Server and
vise versa.
Also you may want to verify you don't have any SMTP connectors, this can
over-ride the SMTP virtual server properties.
Hope this helps!
"John Oliver, Jr. [MVP]" wrote:
| Quote: | Out of the box SBS 2003 with Exchange 2003 is set "NOT" to relay. I would
verify again at http://www.vamsoft.com/orf/openrelaytest.asp Then if OK, I
would also check at www.dnsstuff.com for a Reverse DNS Record for your
domain. This is the more likely reason that AOL is rejecting your mail.
--
John Oliver, Jr.
MCSE, MCT, CCNA, Exchange MVP
Microsoft Certified Partner
ashkaan57@hotmail.com> wrote in message
news:1135012501.001608.51560@g47g2000cwa.googlegroups.com...
Hi,
I have a Windows2003 SBS and I have been having issues with sending
emails to AOL.After checking with AOL and my ISP, I was told that the
problem is caused by an open relay on my server.
I have tested this with some sites such as abuse.net and they did not
find an open relay. I followed a test described in
http://www.windowsitpro.com/Articles/Index.cfm?ArticleID=7696&DisplayTab=Article
and it seems I might have an open relay! It says to telnet to the
server (on port 25) and enter the following:
1.HELO me
The server will respond with 250 OK and identify your IP address
and possibly your host name. (it did not, it just said "250 requested
mail action okay, completed")
2. MAIL FROM: someaddress@somedomain.com
Again, the server will respond with 250 OK. (I got: "250
requested mail action okay, completed")
3. RCPT TO: nobody@afakedomain.com
The server will respond with 550 Relaying prohibited. (I got:
"250 requested mail action okay, completed")
4. Using a valid address from your GAL, enter RCPT TO:
thegaladdress@yourdomain
The IMS will reply with 250 OK when it accepts the address. (I
got:"250 requested mail action okay, completed")
5. To close the session, type QUIT
In step 3, I was supposed to see "relaying prohibited" but it says it
was okay. Does this mean open relay?
Also, I checked the Default SMTP Virtual Server Properties on Exchange
and under "Relay Restrictions" I have "these computers may relay" and
have the server's local IP and 127.0.0.1 listed. Also, "allow all
computers which successfully authenticate" checked.
Under "Authentication", the following are checked:
Anonymous access, Basic Authentication, Integrated Windows
Authentication.
Could someone please tell me if these settings are incorrect? How else
can I check for, and fix, open relay?
|
|
|
| Back to top |
|
|
Guest
|
| Posted:
Tue Dec 20, 2005 12:55 am Post subject:
Re: Open Relay |
|
|
Thanks John,
I had checked dnsstuff.com and there is a reverse DNS. AOL keeps
telling me there is an open relay and I can;t seem to be able to
confirm it. I was just wondering if there are other ways of testing it
or some settings that I can make sure are set in order to prevent open
relay. |
|
| Back to top |
|
|
Jonathan Norris
Guest
|
| Posted:
Tue Dec 20, 2005 1:02 am Post subject:
Re: Open Relay |
|
|
try going to http://www.ordb.org/
They have a reley test and also can test your domain against multiple
blacklists.
"ashkaan57@hotmail.com" wrote:
| Quote: | Thanks John,
I had checked dnsstuff.com and there is a reverse DNS. AOL keeps
telling me there is an open relay and I can;t seem to be able to
confirm it. I was just wondering if there are other ways of testing it
or some settings that I can make sure are set in order to prevent open
relay.
|
|
|
| Back to top |
|
|
Guest
|
| Posted:
Fri Dec 23, 2005 1:58 am Post subject:
Re: Open Relay |
|
|
Hi all,
I had set up an SMTP connector while setting up smarthost. It was using
the IP address of the ex-ISP. I removed the connector and I can send to
AOL now. They had also complained about lack of reverse DNS which is
now setup, so no need to do smarthost (I hope!) |
|
| Back to top |
|
|
John Oliver, Jr. [MVP]
Guest
|
| Posted:
Fri Dec 23, 2005 1:58 am Post subject:
Re: Open Relay |
|
|
Thanks for the update.
--
John Oliver, Jr.
MCSE, MCT, CCNA, Exchange MVP
Microsoft Certified Partner
<ashkaan57@hotmail.com> wrote in message
news:1135285433.070567.68390@z14g2000cwz.googlegroups.com...
| Quote: | Hi all,
I had set up an SMTP connector while setting up smarthost. It was using
the IP address of the ex-ISP. I removed the connector and I can send to
AOL now. They had also complained about lack of reverse DNS which is
now setup, so no need to do smarthost (I hope!)
|
|
|
| Back to top |
|
|
|
|
|
|
FAQ
Memberlist
Register
Profile
Log in to check your private messages
Log in