Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Westi on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Checkpoint and Exchange

Status
Not open for further replies.
Peach66

Peach66

IS-IT--Management
Jun 26, 2002
57
US
I have a Checkpoint firewall, two Win2000 servers. One of the servers is Exchange 5.5. For some reason, I lose connection to the Exchange server. The only fix is to reboot the firewall. It works for the entire week, but on Saturday (random time) it no longer works. Internally, all the workstations can access their mailboxes and send emails to internal users. Only external email is blocked. I don't see anything in the Event logs to tell me why it loses it's connection. Any ideas?
 
Sort by date Sort by votes
Do you have FW-1 module installed in your Exchange machine?
if you do then which version is it and which version is runing at your managment moduke?
 
Upvote 0 Downvote
No I don't have FW-1 module running on Exchange Server. It's actually running on the Firewall itself.
 
Upvote 0 Downvote
Just to confirm, your FW is 1 box and the Exchange is a second box. I would look at the log file on the FW during time. Basically you want to see communication from your exchange server to the outside world. Does your Exchange have it's own NAT address? if it does you may want to search on that. Here is a article from MS maybe beneficia. Also confirm your config and rules, you may have the exchange server attempting to use ports it's not allowed.
[noevil]
 
Upvote 0 Downvote
I've had the same problem. The internal clients can access the mail server but no one can connect to it from the outside. Providing that your NAT rules and security rules have not changed then I suspect that this is a proxy arp problem.

If you are doing a static NAT to your mail server then the firewall will have to arp on behalf of that server. On NT server local.arp works just fine but we have found that on Windows 2000 server this doesn't work so well and proxy arp stops working at least once or twice a week. We tried using automatic ARP on NG FP3 and local.arp but neither worked. In the end the fix was putting the MAC address of the mail server on the router so that the router wouldn't have to ARP for it.

Hasn't failed since!!

Chris.


**********************
Chris Andrew, CCNA, CCSA
chris@iproute.co.uk
**********************
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

Sameer258
  • Locked
  • Question
Need Help to Find ip and mac address with email who one open my email
Replies
0
Views
775
Sameer258
Sameer258
Sparrow4
  • Locked
  • Question
Configure Avaya IPO R11 / VM Pro + Office365 or Exchange for voicemail to email
Replies
2
Views
642
Johnkite
Johnkite
Tommy_T
  • Locked
  • Question
Sonic wall - Have an issue remotely connectioning VNC and SMB (and AFP) to one of the 2 ISP circuits
Replies
1
Views
578
nnaarrnn
nnaarrnn
Nitta84
  • Locked
  • Question
navigation slow and tcp syc/ack drop
Replies
0
Views
492
Nitta84
Nitta84
mattbarkerlfc
  • Locked
  • Question
Checkpoint 2200 subnet overlap problem
Replies
0
Views
130
mattbarkerlfc
mattbarkerlfc

Part and Inventory Search

Sponsor

Back
Top