Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss

Receiving 220 ********** on telnet to port 25

8,031 views
Skip to first unread message

David Lozzi

unread,
Sep 12, 2007, 5:11:52 PM9/12/07
to
Howdy,

I have an Exhange 2003 server behind a Cisco PIX-501 6.3 firewall. I have
SMTP port 25 traffic open from external to the Exchange server. When I run
the command "telnet mail.domain.com 25" I get the following response

220
**********************************************************************0****0
**********************2*****200*********2**0*00

helo command doesn't work, only thing that does is quit. If I run the same
command at the console, "telnet 192.168.0.10 25" I get:

220 mail.domain.com Microsoft ESMTP MAIL Service, Version: 6.0.3790
.3959 ready at Wed, 12 Sep 2007 17:05:15 -0400

This is the response I should be seeing...

If I VPN in, using the Cisco client, and run the same command, "telnet
192.168.0.10 25" i get the 220 ***** response as seen above.

Clients on the internal network running "telnet 192.168.0.10 25" see the
correct response 220 mail.domain.com and so on.


I'm not sure what to do with this. The biggest issue is that users
connecting via POP3 cannot send emails getting unable to relay errors, and
i'm guessing this is the issue. If I setup the same exact POP3 account on
the server using Outlook Express, I can send emails fine, outside I cannot.

I read a KB article on MS site about turning off the SMTP command filter in
the PIX firewall. I cannot find this command anywhere.

Thanks!!

David Lozzi


Lanwench [MVP - Exchange]

unread,
Sep 12, 2007, 5:42:33 PM9/12/07
to
David Lozzi <dlo...@nospam.nospam> wrote:
> Howdy,
>
> I have an Exhange 2003 server behind a Cisco PIX-501 6.3 firewall. I
> have SMTP port 25 traffic open from external to the Exchange server.
> When I run the command "telnet mail.domain.com 25" I get the
> following response
> 220
> **********************************************************************0****0
> **********************2*****200*********2**0*00

Yep - this is a known issue. Disable MailGuard on the Pix. See KB 295725for
more info.


>
> helo command doesn't work, only thing that does is quit. If I run the
> same command at the console, "telnet 192.168.0.10 25" I get:
>
> 220 mail.domain.com Microsoft ESMTP MAIL Service, Version: 6.0.3790
> .3959 ready at Wed, 12 Sep 2007 17:05:15 -0400
>
> This is the response I should be seeing...
>
> If I VPN in, using the Cisco client, and run the same command, "telnet
> 192.168.0.10 25" i get the 220 ***** response as seen above.
>
> Clients on the internal network running "telnet 192.168.0.10 25" see
> the correct response 220 mail.domain.com and so on.
>
>
> I'm not sure what to do with this. The biggest issue is that users
> connecting via POP3 cannot send emails getting unable to relay
> errors, and i'm guessing this is the issue. If I setup the same exact
> POP3 account on the server using Outlook Express, I can send emails
> fine, outside I cannot.
> I read a KB article on MS site about turning off the SMTP command
> filter in the PIX firewall. I cannot find this command anywhere.

See the KB article above or google for

pix mailguard disable exchange

You'll get a lot of hits.
>
> Thanks!!
>
> David Lozzi

John Fullbright

unread,
Sep 12, 2007, 8:14:08 PM9/12/07
to
turn off mailguard


"David Lozzi" <dlo...@nospam.nospam> wrote in message
news:D514600F-8216-4221...@microsoft.com...

David Lozzi

unread,
Sep 13, 2007, 11:18:29 AM9/13/07
to
Excellent. Thank you. This worked great!


"Lanwench [MVP - Exchange]"
<lanw...@heybuddy.donotsendme.unsolicitedmailatyahoo.com> wrote in message
news:O6NeeXY...@TK2MSFTNGP05.phx.gbl...

Lanwench [MVP - Exchange]

unread,
Sep 14, 2007, 11:11:13 AM9/14/07
to
David Lozzi <dlo...@nospam.nospam> wrote:
> Excellent. Thank you. This worked great!

You're most welcome - glad it worked.

Junaid Abbas

unread,
Oct 21, 2010, 5:48:38 AM10/21/10
to
Dear,

I have the same issue with my MS-Exchange Server 2003, I have natted on cisco router by this command
ip nat inside source static tcp 192.168.1.16 25 interface fa0/1 25

where 192.168.1.16 is the ip address of my mail server,

The server is sending emails to the internet (hotmail, gmail etc) but not receiving emails from gmail and hotmail etc..

All local emails are working fine.. I disable mail guard in my ASA 5510, now I am able to telnet from other machines to mail server but still unable to telnet from internet .. Please advise

Junaid

> On Wednesday, September 12, 2007 5:11 PM David Lozzi wrote:

> Howdy,
>
> I have an Exhange 2003 server behind a Cisco PIX-501 6.3 firewall. I have
> SMTP port 25 traffic open from external to the Exchange server. When I run
> the command "telnet mail.domain.com 25" I get the following response
>
> 220
> **********************************************************************0****0
> **********************2*****200*********2**0*00
>

> helo command doesn't work, only thing that does is quit. If I run the same
> command at the console, "telnet 192.168.0.10 25" I get:
>
> 220 mail.domain.com Microsoft ESMTP MAIL Service, Version: 6.0.3790
> .3959 ready at Wed, 12 Sep 2007 17:05:15 -0400
>
> This is the response I should be seeing...
>
> If I VPN in, using the Cisco client, and run the same command, "telnet
> 192.168.0.10 25" i get the 220 ***** response as seen above.
>
> Clients on the internal network running "telnet 192.168.0.10 25" see the
> correct response 220 mail.domain.com and so on.
>
>
> I'm not sure what to do with this. The biggest issue is that users
> connecting via POP3 cannot send emails getting unable to relay errors, and
> i'm guessing this is the issue. If I setup the same exact POP3 account on
> the server using Outlook Express, I can send emails fine, outside I cannot.
>
> I read a KB article on MS site about turning off the SMTP command filter in
> the PIX firewall. I cannot find this command anywhere.
>

> Thanks!!
>
> David Lozzi


>> On Wednesday, September 12, 2007 5:42 PM Lanwench [MVP - Exchange] wrote:

>> Yep - this is a known issue. Disable MailGuard on the Pix. See KB 295725for
>> more info.
>>
>>
>>

>> See the KB article above or google for
>>
>> pix mailguard disable exchange
>>
>> You'll get a lot of hits.


>>> On Wednesday, September 12, 2007 8:14 PM John Fullbright wrote:

>>> turn off mailguard


>>>> On Thursday, September 13, 2007 11:18 AM David Lozzi wrote:

>>>> Excellent. Thank you. This worked great!
>>>>
>>>>

>>>> "Lanwench [MVP - Exchange]"


>>>>> On Friday, September 14, 2007 11:11 AM Lanwench [MVP - Exchange] wrote:

>>>>> You're most welcome - glad it worked.


>>>>> Submitted via EggHeadCafe - Software Developer Portal of Choice
>>>>> JustCode Visual Studio Development Add-In by Telerik
>>>>> http://www.eggheadcafe.com/tutorials/aspnet/d174b33a-d86e-48e7-b381-fcd1938b6775/justcode-visual-studio-development-addin-by-telerik.aspx

0 new messages