>Basically I closed all ports from the Internet to the DMZ say 25, 80, 110, >and 443.
Basically, I think you mean "opened". >This seemed to work fine. Email was going from user-to-user and coming >from the internet to us. However, email would not go out. SMTP clients ask the OS to supply a random tcp port above 1024, for sending mail. Have you opened Imail's ip for outbound from ports >1023? > The log showed that our sever was talking to theirs but delivery failed. > Here is an excerpt: > >03:27 10:36 SMTP-(00000158) D:\IMail\spool\Qe5b703c.SMP >03:27 10:36 SMTP-(00000158) processing D:\IMail\spool\Qe5b703c.SMP >03:27 10:36 SMTP-(00000158) Trying ci.akron.oh.us (0) >03:27 10:36 SMTP-(00000158) Connect ci.akron.oh.us [204.210.174.26:25] (1) ok, so Imail is connecting is spite of your firewall! :)) >03:27 10:36 SMTP-(00000158) 220 Welcome to COA email >03:27 10:36 SMTP-(00000158) >EHLO cssbehavioral.org >03:27 10:36 SMTP-(00000158) 500 Unknown command >03:27 10:36 SMTP-(00000158) >HELO domain.com >03:27 10:36 SMTP-(00000158) 250 Hello domain.com, pleased to meet you >03:27 10:36 SMTP-(00000158) >MAIL >FROM:<<mailto:[EMAIL PROTECTED]>[EMAIL PROTECTED]> >03:27 10:36 SMTP-(00000158) 250 ><<mailto:[EMAIL PROTECTED]>[EMAIL PROTECTED] Sender ok >03:27 10:36 SMTP-(00000158) >RCPT >To:<<mailto:[EMAIL PROTECTED]>[EMAIL PROTECTED]> >03:27 10:36 SMTP-(00000158) 250 ><<mailto:[EMAIL PROTECTED]>[EMAIL PROTECTED] Recipient ok >03:27 10:36 SMTP-(00000158) >DATA >03:27 10:36 SMTP-(00000158) 354 Enter mail, end with "." on a line by itself >03:27 10:37 SMTP-(00000158) s: s ah, search the list archives and KB for "s: s". it's a bug in Imail log writing. >03:27 10:37 SMTP-(00000158) Trying aol.com (0) 03:27 10:37 SMTP-(00000158) rdeliver aol.com multiple (2) <mailto:[EMAIL PROTECTED]>[EMAIL PROTECTED] 222725 >03:27 10:37 SMTP-(00000158) >QUIT send to aol OK > I ended up having to re-open all ports on the firewall to get mail to go > to the internet. >Now that the history lesson is over, here is my question What ports and/or >sub ports do I need open on the firewall for IMail to work properly? ingress: tcp on port 25 for receiving egress: tcp on port > 1024 for sending and make both "stateful" Len http://MenAndMice.com/DNS-training http://BIND8NT.MEIway.com : ISC BIND for NT4 & W2K http://IMGate.MEIway.com : Build free, hi-perf, anti-abuse mail gateways Please visit http://www.ipswitch.com/support/mailing-lists.html to be removed from this list. An Archive of this list is available at: http://www.mail-archive.com/imail_forum%40list.ipswitch.com/ Please visit the Knowledge Base for answers to frequently asked questions: http://www.ipswitch.com/support/IMail/
