transport, Allow relaying from authorised IP range

microsoft.public.exchange2000.transport - Microsoft Exchange Server


transport >> Allow relaying from authorised IP range

by Darin Roulston [MSFT] » Fri, 16 Jan 2004 02:46:56 GMT

Hi Steve,
To enable authenticated users to relay (the first thing you tried), you'll
need to do two things.

1.) On the SMTP virtual server's Access tab, hit the relay button. At the
bottom ensure "Allow authenticated users to relay" button is checked.
2.) On the client side you must setup your outgoing server to use your
credentials as well. In Outlook Express if you look at where you enter your
POP3 credentials (on the Servers tab), check the box that says "My outgoing
server requires authentication", then you can click the Settings button and
select "Use same account as my incoming server". This will instruct Outlook
Express to authenticate before attempting to send the mail through your
Exchange Server (not the default).

For the second problem you are having, assuming that you have the relay
settings correct on Exchange (which it sounds like you do) then the IP you
think the client is connecting with may not be correct. What I would do
first is telnet from the client in question to the Exchange Server over port
25. Then open the Exchange System Manager, navigate to the SMTP Default
Virtual Server, expand it and under sessions you should see the IP address
of the client that is connected to the telnet session. Ensure that the IP
listed under sessions matches what you have entered in the Relay settings.

Thanks,
Darin
--
Darin Roulston
Microsoft PSS

Please do not send e-mail directly to this alias. This alias is for
newsgroup purposes only.

This posting is provided "AS IS" with no warranties, and confers no rights
"Steve J" < XXXX@XXXXX.COM > wrote in message
news:0c1f01c3db8a$0124e1f0$ XXXX@XXXXX.COM ...
> I hope I'm posting to the right section here!
>
> I have setup a Win2k / Exchange 2000 Server with a public
> IP, and SMTP & POP3 protocol ports open on the firewall.
>
> I have another site (also with fixed Public IP) they have
> no onsite Exchange server, so collect their emails via
> POP3 which works great. At first I thought if they are
> authorised on the machine to collect their POP3 mail then
> it would automatically allow them to send SMTP after it
> does the recieve procedure.
>
> It is not... instead it is allowing them to send to other
> users within the domain but not to outside users.
>
> I then thought I would put the remote sites block of 8
> IP's on the "allow relaying from these addresses" on the
> SMTP protocol. But still the same problem.
>
> I am testing the SMTP engine using TelNet and its
> reporting "Cannot relay to XXXX@XXXXX.COM "
>
> What have I missed?


Top
Similar Threads

1. Intermittent error: '551 relay from your IP is not authorised' 

Single server running 2000 + Exchange 2003 and the usual 
servcies, with Outlook 2002 clients.

When replying to an email a '551 relay from your IP is not 
authorised' error is instantly returned. 
But this only happens intermittently and will be fine 
sometimes for a week, then happens again out of the blue.

If I create a NEW message right after getting the error, 
it sends off fine. It's just 'Replying' that plays up 
every now and then?

Any ideas
Thanks
Shane

2. Public Folder allowed to IP range?

3. Exchange 2007 Relaying - IP Ranges

4. IP Allow list provider vs IP Allow list - Microsoft Exchange Server

5. How to use Powershell to make list of SMTP relay allow IP addr

6. Allowing single external ip address to anonymously relay to ex - Manage MS Exchange Server

7. How to use Powershell to make list of SMTP relay allow IP addresse 

I'd like to use Powershell to create a simple list of the IP addresses in the 
SMTP allow relay config. Does anyone have a script that'll do that?

Moving further, I'd like to modify the script to add/remove IP addresses 
from the access list.  I have a good VB script that does this, but I'd like 
to do it with powershell.

We are a large organization with three servers doing relay for hundreds of 
internal hosts, and I'm working on a method to test these addresses and 
remove unresponsive hosts from the access list.

Thanks!

8. Allowing single external ip address to anonymously relay to exch07 - Manage MS Exchange Server