telnet to mail server from outside does not get 220, telnet from inside works
Is there something I need to configure in telnetd or sendmail to allow 'outside' IP addresses to telnet to the mail server and get a 220 response? When I 'telnet localhost 25' i get: email# telnet localhost 25 Trying ::1... Connected to localhost.x.com. Escape character is '^]'. 220 email.x.com ESMTP Sendmail 8.13.8/8.13.8; Mon, 12 May 2008 10:01:39 -0400 (EDT) But if I try the same thing from 'outside' the firewall I get: %telnet email..com 25 Trying 67.x.x.x... Connected to email.xxx.com. Escape character is '^]'. Connection closed by foreign host. Certain servers are having problems sending to the server because they are not getting a 220 code back. Most email is sent/received from the server no problem. It has been running in production for over a year. Any ideas? Thanks, Brad _ Windows Live SkyDrive lets you share files with faraway friends. http://www.windowslive.com/skydrive/overview.html?ocid=TXT_TAGLM_WL_Refresh_skydrive_052008___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: telnet to mail server from outside does not get 220, telnet from inside works
On May 12, 2008, at 9:04 AM, brad davison wrote: But if I try the same thing from 'outside' the firewall I get: %telnet email..com 25 Trying 67.x.x.x... Connected to email.xxx.com. Escape character is '^]'. Connection closed by foreign host. Have you checked to see what your mail logs say about those connection attempts? Cheers, -j ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: telnet to mail server from outside does not get 220, telnet from inside works
From: [EMAIL PROTECTED] To: [EMAIL PROTECTED] Date: Mon, 12 May 2008 09:55:42 -0500 CC: freebsd-questions@freebsd.org Subject: Re: telnet to mail server from outside does not get 220, telnet from inside works On May 12, 2008, at 9:04 AM, brad davison wrote: But if I try the same thing from 'outside' the firewall I get: %telnet email..com 25 Trying 67.x.x.x... Connected to email.xxx.com. Escape character is '^]'. Connection closed by foreign host. Have you checked to see what your mail logs say about those connection attempts? Cheers, -j The maillog only has the line like: May 12 11:20:14 email sm-mta[66223]: m4CFKEuB066223: [69.245.x.x] did not issue MAIL/EXPN/VRFY/ETRN during connection to IPv4 which is the same thing i get when i do the telnet 25 from a machine that's on the same network (that gets the 220) May 12 11:20:52 email sm-mta[66314]: m4CFKfiJ066314: [10.0.60.60] did not issue MAIL/EXPN/VRFY/ETRN during connection to IPv4 Is there something for the telnet daemon, or the sendmail daemon that restricts telnet access to just the subnet its on? i.e 10.* network? _ Stay in touch when you're away with Windows Live Messenger. http://www.windowslive.com/messenger/overview.html?ocid=TXT_TAGLM_WL_Refresh_messenger_052008___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: telnet to mail server from outside does not get 220, telnet from inside works
On Mon, May 12, 2008 at 10:04 AM, brad davison [EMAIL PROTECTED] wrote: Is there something I need to configure in telnetd or sendmail to allow 'outside' IP addresses to telnet to the mail server and get a 220 response? When I 'telnet localhost 25' i get: email# telnet localhost 25 Trying ::1... Connected to localhost.x.com. Escape character is '^]'. 220 email.x.com ESMTP Sendmail 8.13.8/8.13.8; Mon, 12 May 2008 10:01:39 -0400 (EDT) But if I try the same thing from 'outside' the firewall I get: %telnet email..com 25 Trying 67.x.x.x... Connected to email.xxx.com. Escape character is '^]'. Connection closed by foreign host. That looks like TCP wrappers dropping the connection. Have you checked /etc/hosts.{allow,deny}? man 5 hosts_access for details. Josh ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: telnet to mail server from outside does not get 220, telnet from inside works
Trying ::1... Connected to localhost.x.com. Escape character is '^]'. 220 email.x.com ESMTP Sendmail 8.13.8/8.13.8; Mon, 12 May 2008 10:01:39 -0400 (EDT) But if I try the same thing from 'outside' the firewall I get: %telnet email..com 25 Trying 67.x.x.x... Connected to email.xxx.com. Escape character is '^]'. Connection closed by foreign host. sendmail try to connect to port auth of remote machine. your firewall probably blocks it just by dropping packets, so it tries until timeout telnet from outside, wait few minutes and you will get a prompt. change your firewall rules to fix it ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: telnet to mail server from outside does not get 220, telnet from inside works
Date: Mon, 12 May 2008 17:49:07 +0200 From: [EMAIL PROTECTED] To: [EMAIL PROTECTED] CC: freebsd-questions@freebsd.org Subject: Re: telnet to mail server from outside does not get 220, telnet from inside works Trying ::1... Connected to localhost.x.com. Escape character is '^]'. 220 email.x.com ESMTP Sendmail 8.13.8/8.13.8; Mon, 12 May 2008 10:01:39 -0400 (EDT) But if I try the same thing from 'outside' the firewall I get: %telnet email..com 25 Trying 67.x.x.x... Connected to email.xxx.com. Escape character is '^]'. Connection closed by foreign host. sendmail try to connect to port auth of remote machine. your firewall probably blocks it just by dropping packets, so it tries until timeout telnet from outside, wait few minutes and you will get a prompt. change your firewall rules to fix it ___ You get the prize. We have a Cisco ASA, and everything works on port 587, but port 25 has cisco's 'Application Inspection' or something that I need to figure out how to turn off. Thanks for the attention. _ Make Windows Vista more reliable and secure with Windows Vista Service Pack 1. http://www.windowsvista.com/SP1?WT.mc_id=hotmailvistasp1banner___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: telnet to mail server from outside does not get 220, telnet from inside works
brad davison wrote: Date: Mon, 12 May 2008 17:49:07 +0200 From: [EMAIL PROTECTED] To: [EMAIL PROTECTED] CC: freebsd-questions@freebsd.org Subject: Re: telnet to mail server from outside does not get 220, telnet from inside works Trying ::1... Connected to localhost.x.com. Escape character is '^]'. 220 email.x.com ESMTP Sendmail 8.13.8/8.13.8; Mon, 12 May 2008 10:01:39 -0400 (EDT) But if I try the same thing from 'outside' the firewall I get: %telnet email..com 25 Trying 67.x.x.x... Connected to email.xxx.com. Escape character is '^]'. Connection closed by foreign host. sendmail try to connect to port auth of remote machine. your firewall probably blocks it just by dropping packets, so it tries until timeout telnet from outside, wait few minutes and you will get a prompt. change your firewall rules to fix it ___ You get the prize. We have a Cisco ASA, and everything works on port 587, but port 25 has cisco's 'Application Inspection' or something that I need to figure out how to turn off. assuming its the same as for a pix (been a while since I used a cisco firewall ;) then it should be no fixup smtp (its one of the first things I used to turn off ;) vince Thanks for the attention. _ Make Windows Vista more reliable and secure with Windows Vista Service Pack 1. http://www.windowsvista.com/SP1?WT.mc_id=hotmailvistasp1banner___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: telnet to mail server from outside does not get 220, telnet from inside works
Vince Hoffman wrote: brad davison wrote: Date: Mon, 12 May 2008 17:49:07 +0200 From: [EMAIL PROTECTED] To: [EMAIL PROTECTED] CC: freebsd-questions@freebsd.org Subject: Re: telnet to mail server from outside does not get 220, telnet from inside works Trying ::1... Connected to localhost.x.com. Escape character is '^]'. 220 email.x.com ESMTP Sendmail 8.13.8/8.13.8; Mon, 12 May 2008 10:01:39 -0400 (EDT) But if I try the same thing from 'outside' the firewall I get: %telnet email..com 25 Trying 67.x.x.x... Connected to email.xxx.com. Escape character is '^]'. Connection closed by foreign host. sendmail try to connect to port auth of remote machine. your firewall probably blocks it just by dropping packets, so it tries until timeout telnet from outside, wait few minutes and you will get a prompt. change your firewall rules to fix it ___ You get the prize. We have a Cisco ASA, and everything works on port 587, but port 25 has cisco's 'Application Inspection' or something that I need to figure out how to turn off. assuming its the same as for a pix (been a while since I used a cisco firewall ;) then it should be no fixup smtp (its one of the first things I used to turn off ;) vince it's no inspect esmtp nowadays Dunc ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]