Search

	display results
words begin exact words any words part

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [FW-1] Exchange doesn't send e-mail notification through fire wall

To: [email protected]
Subject: Re: [FW-1] Exchange doesn't send e-mail notification through fire wall
From: "McKinlay, Ken" <[email protected]>
Date: Thu, 16 May 2002 12:38:22 -0400
Reply-to: Mailing list for discussion of Firewall-1 <[email protected]>
Sender: Mailing list for discussion of Firewall-1 <[email protected]>

As a followup on this issue, Microsoft support article Q148732 only applies
to the TCP ports used by the Information Store, Directory Service and System
Attendent. The new mail notification is sent by UDP and the port is actually
defined by the client upon their connection. The UDP port can not be set to
only a specific entry or range. The details can be found in Microsoft
support article Q264035. Of course, Microsoft's solution is to open up all
the UDP ports from the Exchange server to the clients.

>From Q264035
   Setting          Value
   ------------------------------------------
   Protocol ID      UDP
   Direction        Exchange Server --> Client
   Local Port       >1024
   Remote Port      >1024



Ken McKinlay, GCIA
Network Security, Dy 4 [email protected]


-----Original Message-----
From: Chontzopoulos, Dimitris [mailto:[email protected]]
Sent: Wednesday, May 15, 2002 05:13
To: [email protected]
Subject: Re: [FW-1] Exchange doesn't send e-mail notification through fire
wall


You have to configure Exchange to use predefined ports. You have to set this
up manualy through the registry. Check Microsoft support article Q148732 for
the details.

Cheers,

Dimitris



-----Original Message-----
From: Nico De Ranter [mailto:[email protected]]
Sent: Wednesday, May 15, 2002 10:58 AM
To: [email protected]
Subject: [FW-1] Exchange doesn't send e-mail notification through
firewall



Howdy,

I moved a number of PC's to a protected network (FW-1 NG.FP1). The PC's
on the protected network are allowed to access anything outside their
network
but nothing is allowed in. Unfortunately the users need to have
access to the local virus factory, euh I mean Exchange server. This is still

possible since they are allowed to access anything outside their network,
however it turns out the Exchange server sends a UDP packet whenever the
user gets a new mail. So now the users don't get an automatic warning
anymore but instead they need to press 'check mail' every once in a while.
Unfortunately the Exchange server does not seem to use a fixed port
for sending those packets so I can't just allow that specific traffic.
Is there any way to get around this so the users get their notifications
again?

Nico

=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================

Prev by Date: [FW-1] Static NAT on FW-1 4.1
Next by Date: [FW-1] Fw-1 NAT
Previous by thread: Re: [FW-1] Exchange doesn't send e-mail notification through fire wall
Next by thread: [FW-1] License on either an external or internal Interface?
Index(es):
- Date
- Thread