Another relaying question

[creeve2005]

I have followed all the recomendations to secure my Exchange 2000 server against relay, but I have run several of the many tests and it still fails on a few of them (below). How do I plug up these holes.

Thanks

>>> RSET
<<< 250 2.0.0 Resetting
>>> MAIL FROM: <rlychk@company.ca>
<<< 250 2.1.0 rlychk@company.ca....Sender OK
>>> RCPT TO: <rlytest%rep.rbl.jp@company.ca>
<<< 250 2.1.5 rlytest%rep.rbl.jp@company.ca
relay accepted!!

>>> RSET
<<< 250 2.0.0 Resetting
>>> MAIL FROM: <rlychk@company.ca>
<<< 250 2.1.0 rlychk@company.ca....Sender OK
>>> RCPT TO: <"rlytest@rep.rbl.jp">
<<< 250 2.1.5 "rlytest@rep.rbl.jp"@company.ca
relay accepted!!

Relay test 8
>>> RSET
<<< 250 2.0.0 Resetting
>>> MAIL FROM: <rlychk@company.ca>
<<< 250 2.1.0 rlychk@company.ca....Sender OK
>>> RCPT TO: <"rlytest%rep.rbl.jp">
<<< 250 2.1.5 "rlytest%rep.rbl.jp"@company.ca
relay accepted!!

>>> RSET
<<< 250 2.0.0 Resetting
>>> MAIL FROM: <rlychk@company.ca>
<<< 250 2.1.0 rlychk@company.ca....Sender OK
>>> RCPT TO: <"rlytest@rep.rbl.jp"@company.ca>
<<< 250 2.1.5 "rlytest@rep.rbl.jp"@company.ca
relay accepted!!

>>> RSET
<<< 250 2.0.0 Resetting
>>> MAIL FROM: <rlychk@company.ca>
<<< 250 2.1.0 rlychk@company.ca....Sender OK
>>> RCPT TO: <rep.rbl.jp!rlytest>
<<< 250 2.1.5 rep.rbl.jp!rlytest@company.ca
relay accepted!!

>>> RSET
<<< 250 2.0.0 Resetting
>>> MAIL FROM: <rlychk@company.ca>
<<< 250 2.1.0 rlychk@company.ca....Sender OK
>>> RCPT TO: <rep.rbl.jp!rlytest@company.ca>
<<< 250 2.1.5 rep.rbl.jp!rlytest@company.ca
relay accepted!!

 

[creeve2005]

Not to be rude, but is this question to hard. Two weeks and not one answer. I'm sure I'm not the only one that has come across this.....

 

[Marcs41]

Did you check the links in this forums FAQ section already?

Marc
_{If 'something' 'somewhere' gives 'some' error, expect random guesses or no replies at all. Please specify details.
Free Tip: The F1 Key does NOT destroy your PC!
How Do I Get Great Answers To my Tek-Tips Questions?} See faq222-2244

 

[creeve2005]

I can find a million answers to general relaying questions, but they do not answer my question, that's why I posted it....

Again, I have followed all the recomendations I can find, including those from MS, but my server still fails on the above tests. This is consistent with many of the different relay tests sites I have tried. So obviously there is more to plugging up these holes than just making sure I have relaying set to authenticated users only...


Thanks

 

[Gitszer]

Hi creeve205

I have exactly the same problem. have you had any luck finding a solution

 

[creeve2005]

Nope, none of the info I have come across deals with this. I just keep finding the generic answers.

 

[Marcs41]

if your relaying is set to accept only mail from the INTERNAL IP range, this should not be happening, so I guess you overlooked something.

Marc
_{If 'something' 'somewhere' gives 'some' error, expect random guesses or no replies at all. Please specify details.
Free Tip: The F1 Key does NOT destroy your PC!
How Do I Get Great Answers To my Tek-Tips Questions?} See faq222-2244

 

[Gitszer]

Marcs41,

I thought that if you set accept mail from specific IP address of your Internal IP range it will not allow mail from the outside world?

 

[creeve2005]

My mail is not set for just the internal IP range. It is set to allow anyone that authenticates. That means you must know the user name and password of one of the email accounts on my server. So the original question still remains. Why is Exchange failing the tests outlined in my first post and how do you plug them up?

If you've ever ran a relay test you will see there are about 20 different ones, my server is failing on 6 of them.

 

[Marcs41]

Gitszer, that is correct.

creeve

It is set to allow anyone that authenticates. That means you must know the user name and password of one of the email accounts on my server

Yes, in theory, except, it does not work that way.
THAT is why you should limit relay to the internal IP range!

Marc
_{If 'something' 'somewhere' gives 'some' error, expect random guesses or no replies at all. Please specify details.
Free Tip: The F1 Key does NOT destroy your PC!
How Do I Get Great Answers To my Tek-Tips Questions?} See faq222-2244