What happened to my summer--Part 3

Part 3—Using Exchange to send e-mail to a Verizon.net DSL connection

Date: Mon, 24 Jul 2006 16:21:25 PST

Subject: Re: Email messages not getting out

From: "Hollis Paul [MVP - Outlook]" <nospam@nospam.com>

Newsgroups: microsoft.public.windows.server.sbs

In article <#0JatnxrGHA.4296@TK2MSFTNGP02.phx.gbl>, Mal Osborne wrote:

> You could set up logging & see what the SMTP conversation looks like.   Tick

> the little box on the "Default SMTP virtual server properties" send a few

> messages & see what is there.

Here is what Verizon On-line Help said in a chat:

[Mon, Jul 24, 2006 12:55 PM] -- Lisa B

Thank you. I apologize we do not support the exchange email software. With the

Verizon email address the incoming server uses a POP 3 server but the outgoing uses a SMTP server.

[Mon, Jul 24, 2006 12:57 PM] -- Hollis Paul Exchange sends with a SMTP server. What does it log into? Is it just annonmous connection?

[Mon, Jul 24, 2006 1:02 PM] -- Lisa B

Both the incoming and outgoing servers require authentication with the Verizon user name and password.

[Mon, Jul 24, 2006 1:03 PM] -- Lisa B

The server names are incoming.yahoo.verizon.net and outgoing.yahoo.verizon.net for the incoming and outgoing server names.

[Mon, Jul 24, 2006 1:05 PM] -- Hollis Paul OK. It looks like I should be logging into the outgoing.yahoo.verizon.net server with the Verizon username and password.

[Mon, Jul 24, 2006 1:06 PM] -- Hollis Paul When the dsl installation was done, it set up an account with Outlook Express. Is that an IMAPI account?

[Mon, Jul 24, 2006 1:08 PM] -- Lisa B

No, it would be set up as a pop email account.

[Mon, Jul 24, 2006 1:14 PM] -- Hollis Paul Does the outgoing smtp server use EHlo or Helo?

[Mon, Jul 24, 2006 1:16 PM] -- Lisa B

I apologize as we do not support the email in exchange server and the third party email clients we do support do not require this information we are not aware of which the server uses.

So, I infer that I just need to put outgoing... Into the field after the Send all mail to the following smart host and give it my Verizon username and password in the Outbound security button, and leave everything else on that tab unchanged.

I did send a message and got back this error statement:

Your message did not reach some or all of the intended recipients.

      Subject: RE: Which service to use with DSL--Yahoo or MSN?

      Sent:    7/24/2006 3:27 PM

The following recipient(s) could not be reached:

      outlook-helpers@yahoogroups.com on 7/24/2006 3:27 PM

            There was a SMTP communication problem with the recipient's email server.  Please contact your system administrator.

            <OutlookByTheSound.com #5.5.0 smtp;530 authentication required - for help go to http://help.yahoo.com/help/us/mail/pop/pop-11.html>

That Yahoo page says the following:

Problems sending mail in my POP3 email client The Yahoo! Mail SMTP server requires authentication. To learn how to configure your email program, please choose from the following supported programs:

Outlook 2002 (XP) & 2003

Outlook 98 & 2000

Microsoft Outlook Express

Microsoft Outlook Express for Macintosh Entourage 2001 and higher Eudora 5.1 and higher IncrediMail build 618 and higher Netscape Mail - All Versions If your program and version are not listed above, you may have trouble connecting to the Yahoo! Mail SMTP servers. Other programs and versions are not supported. 

But, if Outlook 2003 can handle it, shouldn't the default SMTP server also work?

I found the tick for logging, but it is in the properties panel of default SMTP virtual server, rather than the SmallBusiness SMTP connector.  On the delivery tab, there is Outbound security there also, and I set the username and password the same as on the connector.

For a more detailed look at the process, here are a number of figures that show the objects in the SBS2003’s Server Management Object tree that you need to change.  Figure one shows the portion of the Exchange Object Tree that contains the Default SMTP Virtual Server and the Small Business SMTP Connector.

Figure 1: A portion of the Exchange Object Tree in the SBS2003 Server Management Object List


Figure 1:  A portion of the Exchange Object Tree in the SBS2003 Server Management Object List 

Figures 2, 3, and 4 show to Properties Pages and buttons that you must traverse to get to the Outbound Security parameters that need to be set in the Default SMTP Virtual Server.

 

Figure 2. The SMTP Virtual Server Properties Panel with the Access tab selected 
Figure 2.  The SMTP Virtual Server Properties Panel with the Access tab selected

 Figue 3 The Delivery Tab of the SMTP Virtual Server Properties

Figue 3  The Delivery Tab of the SMTP Virtual Server Properties

Figure 4 The Authentication Parameters for Outbound Security behind the Outbound Security Button on the Delibery Tab of the SMTP Virtual Server Properties Panel


Figure 4 The Authentication Parameters for Outbound Security behind the Outbound Security Button on the Delibery Tab of the SMTP Virtual Server Properties Panel

Note: I have painted out my account name in Figure 4.  You need to put your Verizon account name in front of the “@verizon.net” text in the User name field.


Figure 5 shows the Property Panel of the Small Business SMTP Connector.


Figure 5 shows the Property Panel of the Small Business SMTP Connector.


Figure 5  The Property Panel for the SmallBusiness SMTP Connector

Figures 6, 7, and 8 show the Advanced Tab and the buttons you have to traverse to get to the Outbound Security parameters in the Small Business SMTP connector Properties.

Figure 6


Figure 6 Outbound Security button on Advanced Tab

Figure 7


Figure 7 Outbound Authentication Selection

To enter the user name and password you have to click the Modify button under Basic Authentication in the Outbound Security page.


Figure 8 The Outbound Connection Parameters Behind the Outbound Security button in the Advanced Tab of the Small Business Connector Properties Panel

Figure 8 The Outbound Connection Parameters Behind the Outbound Security button in the Advanced Tab of the Small Business Connector Properties Panel

Note: I have painted out my account name in Figure 8.  You need to put your Verizon account name in front of the “@verizon.net” text in the User name field.


I re-sent the message, and it hasn't been returned by the system administrator.  It hasn't finished its round-trip, either.  And I can't find any log file.


The message finished its rount-trip.  Kaloo! Kalay!


But not so fast here.  There are some unsavory things that have happened elsewhere   You really must look at what was setup in the Relay page, which is behind the Relay button on the Access tab of the Small Business SMTP connector Properties.  Figures 9 and 10 show the relevant property pages.


Figure 9 – Access tab (really, another instance of Figure 2)


Figure 9 – Access tab (really, another instance of Figure 2)

Figure 10 – Relay tab Behind the Relay button on the Access Tab of the SmallBusiness SMTP Connector’s Property panel.


Figure 10 – Relay tab Behind the Relay button on the Access Tab of the SmallBusiness SMTP Connector’s Property panel.

Having 127.0.0.1 in the Relay table, in conjunction with other conditions, was one of the things to check when I was chasing a possible Open Relay situation.  It makes me nervous to have it there. 192.168.1.3 is the incoming connector, and having that in the Relay table looks, to me, like an invitation to all spammers saying “Come one; Come All, Relay your spam through me.”   But, during contact with the Microsoft Support engineers, I have learned that the 127.0.0.1 is there to make that IP to work properly as the local computer, and the 192.168.1.3 (or whatever your WAN IP address might be) is there to enable users to log into your system and then send e-mail.  Neither is, by itself, the cause of an Open-Relay.  However, if you do not care about using 127.0.0.1 from the SBS control console, nor allow users to log-in and/or send e-mail, then you can remove them (like I do) and sleep better at night.


The reason that 192.168.1.3 is entered in the Relay table is that the CEICW created a host record for that NIC in the DNS server.  It isn’t a host, so I inferred it should be removed from the DNS Domain Forward Lookup Zone.  I just did and internet access still works.  But, of course, I don’t allow anybody to log in to my system.  And if I ever do in the future, I am going to have problems, because I will not remember deleting this feature. 


It needs to be emphasized that this SBS2003 system was happily performing all its duties--allowing client access to the internet, POP3ing e-mail, and pushing e-mail messages out to the Verizon outgoing server—with the TCP/IP property setup shown in Figure 10.  But this is definitely non-standard for SBS2003.  The SBS MVPs were unhappy.  The system was happy.  And if I put in the usual 10.0.0.2 value for Preferred DNS, I lost connection to the internet.


Figure 11: The TCP/IP Properties for that first achieved connection through the Verizon DSL modem.  

Figure 11:  The TCP/IP  Properties for that first achieved connection through the Verizon DSL modem.

So, with a little bit of care, some ingenuity, and some selective memory loss about how the Preferred DNS server needs to be setup in SBS2003 (i.e., set the preferred dns field to 192.168.1.1 on your WAN NIC), you can use the Direct Connect Broadband service and Exchange to send e-mail to the outgoing e-mail servers of a Verizon DSL connection.

End Slug 

Previous                                                             Next

Published Tue, Sep 12 2006 16:44 by OBTS
Filed under: