Search

	display results
words begin exact words any words part

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [FW-1] SMTP connection

To: [email protected]
Subject: Re: [FW-1] SMTP connection
From: Dan Hitchcock <[email protected]>
Date: Mon, 8 Jul 2002 09:08:34 -0700
Reply-to: Mailing list for discussion of Firewall-1 <[email protected]>
Sender: Mailing list for discussion of Firewall-1 <[email protected]>

Title: RE: [FW-1] SMTP connection

Were I a betting sort, I would bet the farm that this is a name resolution problem. I have seen this more times than I care to remember, and the problem was, without exception, always name resolution (rare to be able to make such a statement!). Reconfirm that, from the mail server, you can successfully reverse-lookup the address from which you are attempting the telnet session (in a timely fashion :).

Hope that helps

Dan Hitchcock
CCNP, CCSE, MCSE
Security Operations Technical Lead
Breakwater Security Associates, Inc.
"Safe Harbor for Your Business"
dhitchcock (at) breakwatersecurity (dot) com
http://www.breakwatersecurity.com
work

The information contained in this email message may be privileged, confidential and protected from disclosure. If you are not the intended recipient, any dissemination, distribution or copying is strictly prohibited. If you think you have received this email message in error, please email the sender at dhitchcock (at) breakwatersecurity (dot) com

-----Original Message-----
From: Devon Harding - GTHLA [mailto:[email protected]]
Sent: Monday, July 08, 2002 8:00 AM
To: [email protected]
Subject: Re: [FW-1] SMTP connection

PTR records are fine...

It literally takes like 5mins. To get a connection prompt via 'telnet
193.194.138.75 25'

When I try this from a host outside the firewall, the connection is instant.

-Devon

-----Original Message-----
From: Mark Ward [mailto:[email protected]]
Sent: Friday, July 05, 2002 9:48 AM
To: [email protected]
Subject: Re: [FW-1] SMTP connection

have a look at PTR records from the machine you are connecting from as some
mail servers also want to be able to do a reverse lookup.
----- Original Message -----
From: "Devon Harding - GTHLA" <[email protected]>
To: <[email protected]>
Sent: Friday, July 05, 2002 1:48 PM
Subject: Re: [FW-1] SMTP connection

> I already have this rule (# 2). It's still timing out. What else can
cause
> this?
>
> -Devon
>
> -----Original Message-----
> From: Don [mailto:[email protected]]
> Sent: Wednesday, July 03, 2002 3:57 PM
> To: [email protected]
> Subject: Re: [FW-1] SMTP connection
>
> > When I telnet to a SMTP server (193.194.138.75) from a machine behind my
> > FW-1 firewall, it connects, but the 220 response come up until I type
> > 'quit'. And sometimes it doesn't even connect.
> >
> > When I try to telnet from another server from a remote location I get a
> > response right away like this...
> >
> > [root@mars root]# telnet 193.194.138.75 25
> > Trying 193.194.138.75...
> > Connected to 193.194.138.75.
> > Escape character is '^]'.
> > 220 SIRIUS.unicc.org ESMTP MTA at UNICC; Wed, 3 Jul 2002 20:28:04 +0200
> >
> > What's causing this?
> ident timeout failure. Does your firewall have a rule that says:
> any any ident REJECT ?
>
> If not, add it.
>
> -Don
>
> =================================================
> To set vacation, Out Of Office, or away messages,
> send an email to [email protected]
> in the BODY of the email add:
> set fw-1-mailinglist nomail
> =================================================
> To unsubscribe from this mailing list,
> please see the instructions at
> http://www.checkpoint.com/services/mailing.html
> =================================================
> If you have any questions on how to change your
> subscription options, email
> [email protected]
> =================================================
>
> =================================================
> To set vacation, Out Of Office, or away messages,
> send an email to [email protected]
> in the BODY of the email add:
> set fw-1-mailinglist nomail
> =================================================
> To unsubscribe from this mailing list,
> please see the instructions at
> http://www.checkpoint.com/services/mailing.html
> =================================================
> If you have any questions on how to change your
> subscription options, email
> [email protected]
> =================================================
>

=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================

Follow-Ups:
- [FW-1] NG FP2 https bug
  - From: Mete Eminagaoglu <[email protected]>

Prev by Date: [FW-1] Nokia 330/530 asymmetric load balancing?
Next by Date: Re: [FW-1] SMTP connection
Previous by thread: Re: [FW-1] SMTP connection
Next by thread: [FW-1] NG FP2 https bug
Index(es):
- Date
- Thread