RE: Combination ISA/Exchange issue. Help, please!!!?! I'm stumped!!
- From: "Anthony Michaud" <anthonym@xxxxxxxxxxxxxx>
- To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
- Date: Wed, 23 Jan 2002 20:24:41 +1100
If you wanted to do some error checking first, you might like to try
(from the exchange server) telnetting on port 25, to the appropriate
external mail server, and sending a test email. If you're running with
a smtp gateway in a DMZ environment, telnet to that first, sending an
email to that domain, then from the gateway, send on to the domain.
You'd probably want to 'talk' EHLO as well as HELO (if you don't know
what I'm talking about or don't know how to do it, google is your friend
:)
--
Anthony Michaud
Network Administrator
Act! Certified Consultant
eLogix Corporation Pty Ltd
In theory, there is no difference between theory and practice. But in
practice, there is.
> -----Original Message-----
> From: Ian Sterling [mailto:i_sterling@xxxxxxxxxxx]
> Sent: Wednesday, 23 January 2002 07:35
> To: [ISAserver.org Discussion List]
> Subject: [isalist] Combination ISA/Exchange issue. Help,
> please!!!?! I'm
> stumped!!
>
>
> http://www.ISAserver.org
>
>
> OK, I'm stumped. I am posting this to both the ISAServer.org
> list and the
> Exchangeserver.org list, so please excuse the cross-post, but
> I just haven't
> been able to determine where my main problem is coming from. Any
> help/suggestions would be greatly appreciated.
>
> I have Back Office Server 2000 on a multi-server setup. I
> have 3 servers
> (192.168.1.1 & external = ISA; 192.168.1.2 = SQL/PDC; 192.168.1.3 =
> Exchange).
> The PDC is also internal DNS (with a forwarder to our ISP's
> DNS set-up),
> DHCP, and the main file server. All clients are running
> Outlook 2000 or XP.
> My problem comes with trying to send mail to a specific
> external domain
> (user@xxxxxxxxx). When sending mail to a contact in the
> fedex.com domain,
> any user inside the network will receive an NDR and then a delay
> notification. The Exchange manager shows that the messages
> are in the
> queue, but they show (Remote Delivery). Eventually, a final
> NDR will be
> delivered to the sender of the e-mail, and the message times out.
> (Fedex.com seems to be the only domain I have had this issue
> with.) {Of
> course, I'm not blocking fedex.com-that I'm aware of, at
> least. The only
> things that are blocked using filters are message attachments
> (.exe, .ini,
> .scr, etc.) and known virus subject lines (I Love you, "Hi", etc).
>
> I'm pretty sure that the internal servers are both working
> fine as Secure
> NAT clients, because I can fully access the internet from
> both servers using
> the standard allowed protocols. However, I have noticed that
> I cannot do a
> NSLOOKUP from either internal machine. The ISA server, of
> course, can do
> full NSLOOKUP without any problems. (I installed DNS on it
> to see if maybe
> that was an issue, and the results are the same from the
> internal servers.)
>
> Fedex.com is the only domain that I can't send e-mail to,
> though, even with
> the NSLOOKUP issues.
>
> Help!!!!! Can someone point me in the right direction here?
> I thought all
> rules & protocol definitions were set up correctly (I even
> have a client set
> defined for the internal servers, and I've checked the
> protocol definitions
> and rules to no avail.)
>
> Thank you for your help,
>
>
> Ian Sterling
>
>
>
>
> _________________________________________________________________
> Get your FREE download of MSN Explorer at
> http://explorer.msn.com/intl.asp.
>
>
> ------------------------------------------------------
> You are currently subscribed to this ISAserver.org Discussion
> List as: anthonym@xxxxxxxxxxxxxx
> To unsubscribe send a blank email to
> $subst('Email.Unsub')
>
Other related posts:
