Results 1 to 4 of 4

Thread: SMTP auth not working outside of ZCS's subnet

  1. #1
    Join Date
    Nov 2006
    Posts
    18
    Rep Power
    9

    Default SMTP auth not working outside of ZCS's subnet

    Greetings.

    Our ZCS server is set up to use our main server (we're an ISP) as the relay MTA. However, we still want to allow SMTP connections from authenticated users (and of course the relay MTA). Unfortunately, SMTP authentication does not work when the sender is connecting from a different subnet - they get a 554 Relay Access Denied rejection. If I put that same machine on the same subnet as ZCS, SMTP authentication works fine. It also works fine if I add the external IP address of the host to the zimbraMtaMyNetworks list, but that's not what I want.

    Is this one of those unfortunate "this behavior is by design" issues or am I possibly doing something wrong?

    Dave

  2. #2
    phoenix is offline Zimbra Consultant & Moderator
    Join Date
    Sep 2005
    Location
    Vannes, France
    Posts
    23,587
    Rep Power
    58

    Default

    SMTP Authentication from an external client works fine otherwise I wouldn't be able to use my phone to send mail (and I can). Have you checked the authentication settings in the admin ui are correct?
    Regards


    Bill


    Acompli: A new adventure for Co-Founder KevinH.

  3. #3
    dijichi2 is offline OpenSource Builder & Moderator
    Join Date
    Oct 2005
    Posts
    1,176
    Rep Power
    12

    Default

    trawl the logs and make sure the client is 100% definitely for-sure absolutely actually attempting smtp-auth. most problems come down to this! also make sure zimbra is set to allow non-tls smtpauth and/or the client is set to try tls.

  4. #4
    Join Date
    Nov 2006
    Posts
    18
    Rep Power
    9

    Default

    Quote Originally Posted by dijichi2 View Post
    trawl the logs and make sure the client is 100% definitely for-sure absolutely actually attempting smtp-auth. most problems come down to this! also make sure zimbra is set to allow non-tls smtpauth and/or the client is set to try tls.
    I tried the same clients on both a DSL connection and the internal LAN. When on the internal LAN, everything worked and the logs showed that authentication was indeed taking place.

    Be that as it may, I am now suspicious of our firewall (Symantec Enterprise Firewall 6.5.3, formerly known as Raptor). Although I added the correct rules to allow access and it is working to the extent of allowing the other server to act as the default MTA for ZCS, I think the firewall is disallowing some of the information being sent when someone attempts to authenticate and it won't allow me to allow port 25 without the SMTP proxy.

    We may just set up the SMTP authentication on the other server for now and see if we can fix this later when we switch to a firewall appliance.

    Thanks.

    Dave

Similar Threads

  1. need advice on configuring zimbra to work with fax server
    By pheonix1t in forum Administrators
    Replies: 0
    Last Post: 07-11-2007, 08:46 PM
  2. SMTP Auth. Failed outside the subnet
    By chanck in forum Administrators
    Replies: 43
    Last Post: 04-28-2007, 09:17 PM
  3. SMTP Auth error 535
    By FloydWilliams in forum Administrators
    Replies: 0
    Last Post: 01-04-2007, 02:33 PM
  4. SASL error when sending via SMTP Auth
    By daniellawson in forum Administrators
    Replies: 10
    Last Post: 12-10-2006, 07:39 AM
  5. SMTP Auth Failing?
    By mikea in forum Administrators
    Replies: 15
    Last Post: 01-03-2006, 10:39 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •