Registered users    
MembershipMembership:
Latest New UserLatest:jenisa villarin
New TodayNew Today:11
New YesterdayNew Yesterday:11
User CountOverall:23322
Private messaging    
You must be logged in to use this module.
Top 10 posters    
NamePosts
Mariette Knap12893
Marina Roos12507
Eriq Neale2114
Stan Guinn1913
Michael Patrick1912
Robert Pearman1771
Nick Pieters1425
Stewart Brown616
william warren598
Kevin D.579
Welcome unauthorized visitor    
If you want to join us in the discussions on this forum you need to register first. Registration is free! If you are already a registered user please login to join the forum.
Small Business Server Support Forum    
Forums > Microsoft Small Business Server 2003 & 2000 > ISA Server 2004
Subject: Forward SMTP to spam appliance
Prev Next
You are not authorized to post a reply.

Author Messages
Bert Himpe User is Offline
Belgium
Member since
1/13/2006

Registered Users
Posts: 17
3/28/2008 09:26 AM  
Hi,

I have a SBS2003 R2 premium installed on a customer site.
Up untill yesterday everything worked fine without ISA installed.

At the SBS2003 i forwarded port 25 in RRAS to the ip adres of the spamappliance (sonicwall ES200) wich then forwards all good mail to the SBS's exchange.

Yesterday i installed the ISA2004 including SP3.
I did my usual configuration and then published a new "mail server" (wich basically forwards port 25 trafic to the appliance again)
I also allow all outbound trafic.

Only now when i connect using telnet from outside the network i get the headers of the sonicwall appliance but i'm disconnected immediatly ( "connection to host lost" )

I have 2 similar setups at customer sites at the moment wich work fine.

Only difference is this site has R2 and ISA SP3 installed.

I allready logged what is happening in ISA and i see that the request is put through to the sonicwall but i only get an answer 20 secs later ...

If you have any suggestions please let me know.
robert pearman User is Offline
United Kingdom
Member since
2/23/2007

Platinum Membership
Posts: 1771
3/28/2008 10:34 AM  
did you post this on isaserver.org as well ? ;-)

wouldnt it be easier to have the spam appliance between the cisco and the isa server?

can you post up a list of your isa rules, where abouts is this new mail server publishing rule in the list? any other mail server rules?

what options do you have set in the rule?
Bert Himpe User is Offline
Belgium
Member since
1/13/2006

Registered Users
Posts: 17
3/28/2008 11:08 AM  
Robert,
 
Thanks for the quick reply.
I also posted on isaserver
 
Here is my firewall policy. 
I have though of putting the sonicwall between the cisco an the isa, but that means i have no control over what happens since i can't administer the cisco (that's done by the ISP)
That would also mean i need to set other rules up for ldap access from the device and i would have to make sure users can easily login to the device.
 
So i still prefere to have the device in the inside network.
 
Attached you will find my firewall policy. (it's basic because i just put it up )
I opened up all outbound connection 
 
Mind you, the smtp server rule is disable so that their mail can function atm with IMF
 
 
robert pearman User is Offline
United Kingdom
Member since
2/23/2007

Platinum Membership
Posts: 1771
3/28/2008 12:11 PM  
ok it sounds like the device is more sophisticated than i thought - was assuming it just scanned and passed on.

Ok so, the rules seem ok although in order to troubleshoot it i think your going to have to re-enable that rule,

if you want to have the IMF enabled as well as the scanning device for troubleshooting, you should assign an additional IP to the external NIC of the isa server and change your sonical wall rule to only listen on that second IP - and the sbs smtp rule to listen on the other.

then you should be able to run your telnet commands to the second ip of the isa server from either the sbs box or a machine you patch into the cisco-isa network.
Bert Himpe User is Offline
Belgium
Member since
1/13/2006

Registered Users
Posts: 17
3/28/2008 12:26 PM  
Another issue is with blackberry software i installed.
Apparently it runs on port 8080 wich is used by ISA aswell.
I uninstalled the blackberry software but i think the ISA install might be corrupted by it.
 
Initially i could connect to the internet from the isa (sbs) server and it routed me through to the blackberry webinterface no matter what the page i was triing to access.
Since uninstalling it it is fine, but i still think it might have corrupted the ISA install.
 
I also noticed i can't get the VPN server up  ...
 
I'm going to go to the client this afternoon en reinstall isa just to make sure ! I've never had this problem before with similar setups so i can't think of any other reason.
robert pearman User is Offline
United Kingdom
Member since
2/23/2007

Platinum Membership
Posts: 1771
3/28/2008 12:40 PM  
let us know how it goes, if you want any more suggestions let me know!
Bert Himpe User is Offline
Belgium
Member since
1/13/2006

Registered Users
Posts: 17
3/31/2008 10:17 AM  
I reinstalled isa and SP3 and the problem is still there ...
 
My collegue who is at the site also has a problem with SQL2005 dropping it's connection after some time ... i'm checking it out now because the problem only started to occure after the ISA installation and i think it might be related !
Bert Himpe User is Offline
Belgium
Member since
1/13/2006

Registered Users
Posts: 17
4/01/2008 05:24 PM  
SQL problem were directly related to the above problem  
You are not authorized to post a reply.
Forums > Microsoft Small Business Server 2003 & 2000 > ISA Server 2004 > Forward SMTP to spam appliance


ActiveForums 3.7
Forum policy    
These Discussion Forums are dedicated to the discussion of the Small Business Server and related server and client software. For the benefit of the community please observe the following posting guidelines:
  1. No Advertising. This includes promotion of commercial products and non-commercial products which are not directly related to Small Business Server and related server and client software.
  2. No Flaming or Trolling.
  3. No Profanity, Racism, or Prejudice.
  4. Site Moderators have the final word on approving/removing a thread or post or comment.
Copyright 2002-2008 Concentrix b.v.    :   Page generated in 0.3437522 seconds.   :   Terms Of Use   :   Privacy Statement