Search

	display results
words begin exact words any words part

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [FW1] SecuRemote sending email relay problem

To: "Elaine Lolos" <[email protected]>
Subject: Re: [FW1] SecuRemote sending email relay problem
From: Joel Turoff <[email protected]>
Date: Sat, 23 Jun 2001 09:47:46 -0400
Cc: [email protected]
Sender: [email protected]

Elaine:

It sounds like your SMTP server is configured to prevent relaying of e-mail from people outside of your LAN. When your users are dialed into their ISP's (or connected via cable modem/dsl) they have an IP address from their respective providers. Your SMTP server sees that IP address coming in, and denies the mail because it is outside of your domain.

Haven't tested this out with SMTP, but you should be able to read the manual and setup IP pools for SecuRemote sessions, where your Securemote users pick up a designated IP address from a pool when they access your LAN. Then you can add the IP pool network range to your SMTP server (not sure what sort of SMTP server your using if it's sendmail, look for /etc/mail/relay-domains.

It just might work.

Joel

At 10:47 AM 6/20/01 -0400, you wrote:
>>>>

Hello, I have a question regarding SecuRemote users sending email to my internal email server (behind the firewall). This seems like a pretty basic thing that should work, or that others would have asked this question, yet I couldn't find the info in the archives. Here's the scenario and the problem - People take their work laptops home to do work at home. Their mail client (Outlook, POP) is configured to retrieve and send email with our internal email server. They have SecuRemote installed so they can reach the internal mail server over their ISP connection. My access rule in the firewall says SRC: secureremoteusers@any DEST: my-encryption-domain SERVICE: any ACTION: Client Encrypt Retrieving email works fine, as well as other connections to internal hosts. However, when sending email, the mail server sees the originator of the incoming connection as the user's ISP address and doesn't realize the connection came through the firewall and hence rejects the mail (when not destined for an internal user) due to relay restrictions. Specifics - Firewall 4.0, not using the SMTP Security Server resource. Am I missing something obvious here? Thank you, Elaine

=============================================================================== To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ===============================================================================

Prev by Date: AW: [FW1] Is SecuRemote Safe?
Next by Date: RE: [FW1] Firewall-1 on Redhat 6.2
Previous by thread: RE: [FW1] SecuRemote sending email relay problem
Next by thread: [FW1] DMZ advantages
Index(es):
- Date
- Thread