Internal Domain differs from external

Reini · #1 (**permalink**) 05-31-2009, 04:42 PM

Hi,
I have set up a network with a windows 2003 server and a domain called "sys4u.local" at home.
Cause of a 24-Hour-Disconnect by my ISP i have a dyndns.org domain for my external ip. Say its "myastaro.dyndns.org"

Now i want to send a email from my gmail account to my network.
So i send my Email to Testuser@myastaro.dynnds.org.
As result i get a email back: 550 Relay not permitted (in reply to RCPT TO command)
I think this is because the astaro doesen't know that sys4u.local and myastaro.dyndns.org are the same.

Ho can i teach this to my astaro?

BAlfson · #2 (**permalink**) 05-31-2009, 06:22 PM

Have you set up Exchange on your Win2003 server? If not, which email server are you using?

Cheers - Bob

Reini · #3 (**permalink**) 05-31-2009, 06:58 PM

Sorry i forgot to say this.

I have a Exchange 2003 Server.
I configured it for the domain sys4u.local - at the moment not for the dyndns domain.
Maybe a silly question to you: Do i have to configure it for the dyndns adress, too?

I thought that it's may possible to "translate" the dyndns domain into the sys4u.local domain within the astaro...

BAlfson · #4 (**permalink**) 05-31-2009, 10:05 PM

Your posts seem to indicate that you have confused the concept of domain name and the content of the DNS records at the authoritative name server for your domain. Do you have your public DNS records set up? Does the MX record for your domain refer to the FQDN that resolves to the IP of the 'External (Address)'?

We recommend using that FQDN for the hostname of the Astaro, wherever it's requested.

In the Astaro, on the 'Routing' tab of 'SMTP', put your domain name in the appropriate box so that the Astaro will know to accept mail for your domain. Select "Static host list" and into the box, put the host defined with the internal IP for the Exchange server.

In the Exchange System Manager, you must modify the SMTP connector to use the IP of the Astaro's 'Internal (Address)' as the target for smarthost.

Each Active Directory user must be correctly configured to accept email for their valid, public SMTP email address.

Cheers - Bob

Reini · #5 (**permalink**) 06-01-2009, 12:57 PM

Quote:

Your posts seem to indicate that you have confused the concept of domain name and the content of the DNS records at the authoritative name server for your domain.

Since your post i agree with you

Quote:

Do you have your public DNS records set up?

I think so. I can ping MyName.dyndns.org. It's resolved to the IP my ISP assigned to me. I can scan it for open port 25: Success

Quote:

Does the MX record for your domain refer to the FQDN that resolves to the IP of the 'External (Address)'?

I think dyndns.org sets the default MX to MyName.dyndns.org because when i try to set it manually to MyName.dyndns.org it says the changes are saved but when i want to take a look at them they are flushed.

Quote:

We recommend using that FQDN for the hostname of the Astaro, wherever it's requested.

Management -> System Settings -> Hostname
Hostname is set to MyName.dyndns.org

Quote:

In the Astaro, on the 'Routing' tab of 'SMTP', put your domain name in the appropriate box so that the Astaro will know to accept mail for your domain.

In this list i have:
- sys4u.local
- MyName.dyndns.org

Quote:

Select "Static host list" and into the box, put the host defined with the internal IP for the Exchange server.

It was & is

Quote:

In the Exchange System Manager, you must modify the SMTP connector to use the IP of the Astaro's 'Internal (Address)' as the target for smarthost.

I'm using a german version of Windows Server & Exchange.
In the settings of the smtp connector i selected the 2nd option button from top and defined my Smarthost with [192.168.100.254]

Quote:

Each Active Directory user must be correctly configured to accept email for their valid, public SMTP email address.

I'm testing with the administrator's account
he's got the smtp adresses
administrator@sys4u.local
administrator@MyName.dyndns.org
-------------------

I Think adding MyName.dyndns.org to the routing tab in the astaro has changed something (I tried this before my initial post here but i think i didn't clicked on apply).
Before the change the message in the SMTP-Proxy log was:

Code:

2009:06:01-13:30:20 MyName exim[12432]: 2009-06-01 13:30:20 H=(web.de) [192.168.1.254]:1060 F=<something@web.de> rejected RCPT administrator@MyName.dyndns.org: Relay not permitted

now it is:

Code:

2009:06:01-13:48:40 MyName exim[12890]: 2009-06-01 13:48:40 H=(fmmailgate01.web.de) [192.168.1.254]:51983 F=<something@web.de> rejected RCPT <administrator@MyName.dyndns.org>: No RDNS entry for 192.168.1.254

----

Mybe some info about my network:
http://image.to/out.php/t36399_plan2.gif

I have to do this because of a school project. we have to setup a network with a communication server.
The whole network is running on one physical machine with 3 virtual machines (astaro, server, client).
The Physical host machine is seperated from my personal local network with a second router.
The Router 1 is configured for dyndns.
There are Portforwardigs to the astaro for smtp and vpn

---

OK.
Found something:
http://www.astaro.org/astaro-gateway...-relaying.html

Quote:

it seems that you're running a local mailserver and you've tried to send mails directly to external servers. this is mostly not possible, because you've got a dynamic ip with no rdns entry.

to solve this problem you have to solutions:

1. get a static ip address with rdns entry

2. use a smarthost (external smtp relay) such as T-Com provides for business customers.

if you're scenario is that you are running your mail client with more external accounts (e.g. gmx, yahoo, etc) and want all your mails get scanned by asl and then delivered to the certain boxes -> no way with the asl's smtp proxy.

I think i have the same problem.
I think i'm going to add this problem to the "known issues" list of my project because i have no static ip ot a external relay.
Thanks anyway.
Thread can be closed

BAlfson · #6 (**permalink**) 06-01-2009, 02:15 PM

No emails to *@sys4u.local should leave the Exchange server, so you don't need that in the Astaro configuration. In Active Directory, the user's sys4u.local address should NOT be the highlighted, default address.

I'm still confused about your domain. Can you do a whois query on it and show what records you have?

Thanks for mentionning that this is a school project. We'll know to help you learn instead of solving your problems for you.

Cheers - Bob

Reini · #7 (**permalink**) 06-01-2009, 03:01 PM

Thanks for your Help, really.
But nobody told us to fully configurate our network for communication with the internet.
I can simulate a incoming mail with some telnet commands from a client in my personal local network. That needs to satisfy my teacher in this case.
I don't want to put any more time into a feature that isn't requestet.
I just thought it may could be easy.

In a real envorionment there aren't different domains usualy so i really don't want to put any more time into this.

[QUOTENo emails to *@sys4u.local should leave the Exchange server, so you don't need that in the Astaro configuration. In Active Directory, the user's sys4u.local address should NOT be the highlighted, default address.[/QUOTE]
My idea was that mails would be recieved over the dyndns adress and sent via the sys4u.local. So the Primary adress was the sys4u.local adress.

Quote:

I'm still confused about your domain. Can you do a whois query on it and show what records you have?

A domain whois on a subdomain.dyndns.org address? This would more refer to dyndns.org as to my network i think?

---

As i said... It's not a required feature of our project to get the exchange working with the internet.
But i think i'm now able to explain my teacher what we have tried and why it don't work

Big thanks