RE: Strange IMC Issue

Kastner, Bill Tue, 28 Aug 2001 12:50:32 -0700
I actually figured this out.

Even though I was re-directing the traffic thru the firewall, I didn't
realize that the Raptor rules associated with the internal server had SMTP
domain restrictions set (I thought it was just on the IMC themselves). Once
I added the domain to the Raptor rule everything worked as I originally
expected.

Thanks for the assistance guys.

Bill

-----Original Message-----
From: WebMeister
[mailto:IMCEAEX-_O=JANETSPLANETS+2ECOM_OU=JANETSPLANETS_CN=RECIPIENTS_CN=PAU
[EMAIL PROTECTED]] 
Sent: Monday, August 27, 2001 3:08 PM
To: '[EMAIL PROTECTED]'
Subject: RE: Strange IMC Issue

I used to/still have a Raptor 6 and 6.5 firewall.  You must have multiple
redirect IPs to redirect it to multiple servers behind it. Raptor still
proxies it right? Typically Raptor is just set to pass it back to one SMTP
server, Exchange or otherwise, which will then relay it to your other
servers. I have several domains I just pass to one server.  I just then
relay it or accept it as inbound. 

If they are in the same site, which would be the best since they use the
MTA,  the MTA will pass it anyway right no matter which IMC accepted it,
right? I have done this and it works.

If this is not happening then I would set both servers to accept all the
domains you need - or - make sure both are in the same site and delete the
IMC on one and make sure all the domains are listed on the others routing
tab as inbound. If you are using the address space tab then have you looked
at your costs?  You might just be using the Routing tab, which is what I
would do and leave the address space tab alone totally.

Make sure everyone is in the same site and that you have the IMC and cost
set properly and make sure the cost is set to ORG and not site or server.

Are you doing anything with the connected sites tab?  You do not have any
residuals left over from them being two seperate sites?  Have you looked at
using your connected sites tab when they were two seperate sites?

When you remove an IMC it still leaves files behind.  Is your gwart corrupt?
I would run straight telnet to the IMC in question rather than relying on
the logs.
Look at Raptors log files.  It will also give you good info on the SMTP.
Just filter by "smtpd" and see what Raptor tells you.





-----Original Message-----
From: Kastner, Bill [mailto:[EMAIL PROTECTED]]
Sent: Monday, August 27, 2001 12:00 PM
To: Exchange Discussions
Subject: Strange IMC Issue


I didn't see this get posted to the group, so I am re-posting:

I have a really strange IMC issue that I am hopeful someone here can shed
some light on.

Our company routes mail for multiple domain names. In our corporate office
we have 2 Exchange servers each in their own site. Our corporate server
(Exch 5.5 Sp4) hosts mail for 3 domain names, and the other (Exch 5.5 Sp3)
hosts a single domain name. The external DNS records for all our domain
names point to virtual hosts on our Raptor firewall which re-directs the
mail into the appropriate Exchange server. The IMCs on both servers have
routing restrictions to only accept the appropriate e-mail addresses.

What I am trying to accomplish is to collapse the single domain server into
the larger corporate server. However, the corporate server is un-willing to
accept the domain's e-mail even though it's been added to the routing list.
It bounces with a 550 Domain Invalid message.

If I turn on logging on the IMC I see the following:

8/26/2001 4:26:02 PM : A connection was accepted from firewall.company.com.
8/26/2001 4:26:02 PM : <<< IO: |HELO firewall.company.com
|
8/26/2001 4:26:02 PM : <<< HELO firewall.company.com
8/26/2001 4:26:02 PM : >>> 250 OK

8/26/2001 4:26:02 PM : <<< IO: |MAIL FROM:<[EMAIL PROTECTED]>
|
8/26/2001 4:26:02 PM : <<< MAIL FROM:< [EMAIL PROTECTED]>
8/26/2001 4:26:02 PM : >>> 250 OK - mail from < [EMAIL PROTECTED]>

8/26/2001 4:26:02 PM : <<< IO: |RSET
|
8/26/2001 4:26:02 PM : <<< RSET
8/26/2001 4:26:02 PM : >>> 250 OK - Reset

8/26/2001 4:26:03 PM : <<< IO: |QUIT
|
8/26/2001 4:26:03 PM : <<< QUIT
8/26/2001 4:26:03 PM : >>> 221 closing connection

I do not have hotmail on a restricted list, and this process works just fine
if I point the firewall back to the original Exchange server. I have moved
the 2nd Exchange server into the same site as the corporate server, as well
as deleted and re-created the IMC on the corporate server, all with no
effect.

I am completely at a loss as to why this server will not accept this one
domain name. Any insights any one has, or ideas as to where else to look for
clues would be greatly appreciated.

Bill Kastner
Network Administrator
RAND Worldwide
[EMAIL PROTECTED]





_________________________________________________________________
List posting FAQ:       http://www.swinc.com/resource/exch_faq.htm
Archives:               http://www.swynk.com/sitesearch/search.asp
To unsubscribe:         mailto:[EMAIL PROTECTED]
Exchange List admin:    [EMAIL PROTECTED]

_________________________________________________________________
List posting FAQ:       http://www.swinc.com/resource/exch_faq.htm
Archives:               http://www.swynk.com/sitesearch/search.asp
To unsubscribe:         mailto:[EMAIL PROTECTED]
Exchange List admin:    [EMAIL PROTECTED]
RE: Strange IMC Issue

Reply via email to
