Welcome to the Sophos User Bulletin Board.
If this is your first visit, be sure to check out the FAQ by clicking the link above. You may have to register before you can post: click the register link above to proceed. To start viewing messages, select the forum that you want to visit from the selection below.

Reply
 
LinkBack Thread Tools Display Modes
Junior Member
Join Date: Jul 2008
Posts: 18
#1 (permalink)  
Old 04-23-2009, 12:48 AM
Default Astaro Notifications in SMTP Spool

I'm using the ASG v7 software on a beige box for home use. I don't run my own mail server and I don't use the mail security portion of the ASG but I do use the e-mail notifications. I recently stopped receiving the e-mail notifications (they've been working for about a year). I didn't make any changes to the system within weeks of the problem. I found the notifications stuck in the SMTP spool on the ASG.

Here's a snip from the log:

2009:04:01-14:16:31 (none) smtpd[3658]: MASTER[3658]: QR globally disabled, status two set to 'disabled'
2009:04:01-14:16:33 (none) exim[3716]: 2009-04-01 14:16:33 pid 3716: SIGHUP received: re-exec daemon
2009:04:01-14:16:33 (none) exim[3716]: 2009-04-01 14:16:33 exim 4.69 daemon started: pid=3716, no queue runs, listening for SMTP on port 25 (IPv4) port 587 (IPv4) and for SMTPS on port 465 (IPv4)
2009:04:01-23:58:11 (none) exim[3716]: 2009-04-01 23:58:11 SMTP connection from [127.0.0.1]:52871 (TCP/IP connection count = 1)
2009:04:01-23:58:11 (none) exim[12017]: 2009-04-01 23:58:11 [127.0.0.1] F=<do-not-reply@fw-notify.net> R=<my_email_addy> Accepted: from relay
2009:04:01-23:58:14 (none) exim[12017]: 2009-04-01 23:58:14 1LpE4B-00037p-18 <= do-not-reply@fw-notify.net H=localhost (localhost.localdomain) [127.0.0.1]:52871 P=esmtp S=430204 id=1060-21060-1238644690@my_domain
2009:04:01-23:58:14 (none) exim[12017]: 2009-04-01 23:58:14 SMTP connection from localhost (localhost.localdomain) [127.0.0.1]:52871 closed by QUIT
2009:04:01-23:58:15 (none) smtpd[3683]: QMGR[3683]: 1LpE4B-00037p-18 moved to work queue
2009:04:01-23:58:22 (none) exim[12026]: 2009-04-01 23:58:22 10AHOg-00037p-18 smtp.where.secureserver.net [64.202.166.12]:25 No route to host
2009:04:01-23:58:25 (none) exim[12026]: 2009-04-01 23:58:25 10AHOg-00037p-18 mailstore1.secureserver.net [64.202.166.11]:25 No route to host
2009:04:01-23:58:28 (none) exim[12026]: 2009:04:01-23:58:28 (none) exim[12025]: 2009-04-01 23:58:28 10AHOg-00037p-18 == my_email_addy R=dnslookup T=remote_smtp defer (113): No route to host
2009:04:01-23:58:28 (none) exim[12025]: 2009-04-01 23:58:28 10AHOg-00037p-18 ** my_email_addy: retry timeout exceeded
2009:04:01-23:58:28 (none) exim[12028]: 2009-04-01 23:58:28 1LpE4S-000380-0w <= <> R=10AHOg-00037p-18 U=exim P=local S=108094
2009:04:01-23:58:28 (none) exim[12025]: 2009-04-01 23:58:28 10AHOg-00037p-18 Completed
2009:04:01-23:58:51 (none) smtpd[12018]: SCANNER[12018]: Nothing to do, exiting.

I'm not seeing SMTP, SMTP SSL, or DNS blocked on the packet filter and I set rules to allow each of them to any on any, just to test.

Any idea how to fix this? I really appreciate any help.

Last edited by datzrite; 04-23-2009 at 12:51 AM.
Reply With Quote
Billybob's Avatar
Wizard
Join Date: Jul 2006
Location: United States
Posts: 1,846
#2 (permalink)  
Old 04-23-2009, 01:19 AM
Default

Quote:
mailstore1.secureserver.net [64.202.166.11]:25 No route to host
2009:04:01-23:58:28 (none) exim[12026]: 2009:04:01-23:58:28 (none) exim[12025]: 2009-04-01 23:58:28 10AHOg-00037p-18 == my_email_addy R=dnslookup T=remote_smtp defer (113): No route to host
2009:04:01-23:58:28 (none) exim[12025]: 2009-04-01 23:58:28 10AHOg-00037p-18 ** my_email_addy: retry timeout exceeded
Here is your answer. No route to host. FYI You won't see traffic generated by proxies in packet filter logs. Does your ISP allow outbound port 25 traffic directly? Maybe they changed something where now you have to use some kind of authentication (smarthost) before you can send smtp mail.

If that is the case look under management -->notifications -->advanced and fill out the appropriate fields.

Last edited by Billybob; 04-23-2009 at 01:27 AM.
Reply With Quote
Junior Member
Join Date: Jul 2008
Posts: 18
#3 (permalink)  
Old 04-23-2009, 01:41 AM
Default

>Does your ISP allow outbound port 25 traffic directly?

I just spoke with their tech support and they said that they don't block port 25.

That said, I ssh'd in to my ASG and was unable to telnet to port 25 of a colleague's mailserver. It returned "no route to host". I also tried telneting from a pc to port 25 of his mailserver and I get a "connect error 10051".

I tried these both with and without the smtp proxy enabled.

Sure sounds like they're blocking it. Any other thoughts?

Thanks!
Reply With Quote
Billybob's Avatar
Wizard
Join Date: Jul 2006
Location: United States
Posts: 1,846
#4 (permalink)  
Old 04-23-2009, 01:49 AM
Default

Quote:
I just spoke with their tech support and they said that they don't block port 25.
Atleast they didn't tell you to reboot. That is what my ISP tells me for all my problems.

Just use the smarthost as described above.
Reply With Quote
Junior Member
Join Date: Jul 2008
Posts: 18
#5 (permalink)  
Old 04-23-2009, 02:51 AM
Default

>Atleast they didn't tell you to reboot. That is what my ISP tells me for all my problems.

>Just use the smarthost as described above.

I called them back to confirm and found a tech with a much worse attitude. He said that the first tech I spoke with must be wrong because they "encrypt" port 25 for network security purposes.

After this enlightening phone call, I unplugged my ASG and exposed my poor laptop to the cold, cruel Internet all on its own. I still wasn't able to telnet to port 25 on an IP just 2 higher than mine.

I haven't been able to find their (the ISP) settings for smarthost, so I'll wait until this guy's not working (there are only 2 in their tech support at night) and try calling again.

Thanks for your help!
Reply With Quote
Junior Member
Join Date: Jul 2008
Posts: 18
#6 (permalink)  
Old 04-23-2009, 03:40 AM
Default

I tried your suggestion using two different mail relays. It looks like the ASG is still trying to use port 25. I've even tried a reboot and I then tried activating the SMTP proxy with and without the smtp relay settings. I also tested over ports 80 and 587.

I'm obviously no ASG expert, but your tip on the management -> notification -> advanced -> configure smarthost was pretty straightforward.

Is a smarthost different from an smtp relay? Regardless, it should have changed ports when I tried 80 and 587 but if I'm reading the log correctly, it still tried port 25.

Any thoughts?

Thanks!


2009:04:22-23:28:02 mybox exim[8418]: 2009-04-22 23:28:02 pid 8418: SIGHUP received: re-exec daemon
2009:04:22-23:28:02 mybox exim[8418]: 2009-04-22 23:28:02 exim 4.69 daemon started: pid=8418, no queue runs, listening for SMTP on port 25 (IPv4) port 587 (IPv4) and for SMTPS on port 465 (IPv4)
2009:04:22-23:28:15 mybox smtpd[3710]: MASTER[3710]: Action: Forcing delivery process for 10UPap-0001Cy-0P
2009:04:22-23:28:15 mybox exim[9496]: 2009-04-22 23:28:15 10UPap-0001Cy-0P smtpout.where.secureserver.net [64.202.165.58]:25 No route to host
2009:04:22-23:28:15 mybox exim[9495]: 2009-04-22 23:28:15 10UPap-0001Cy-0P == my_email_1 R=smarthost_route T=remote_smtp defer (113): No route to host
2009:04:22-23:29:00 mybox exim[9502]: 2009-04-22 23:29:00 Start queue run: pid=9502
2009:04:22-23:29:00 mybox exim[9503]: 2009-04-22 23:29:00 10Mpun-0004hT-0Y == my_email_2 R=smarthost_route T=remote_smtp defer (-53): retry time not reached for any host
2009:04:22-23:29:00 mybox exim[9505]: 2009-04-22 23:29:00 1Lwohf-0007DV-0T == do-not-reply@fw-notify.net R=smarthost_route T=remote_smtp defer (-53): retry time not reached for any host
Reply With Quote
BAlfson's Avatar
Grandis Professorem Astaro
Join Date: Mar 2007
Location: Oklahoma City
Posts: 21,097
#7 (permalink)  
Old 04-23-2009, 12:49 PM
Default

I'm a little confused by your post. I don't think the SMTP Proxy sends on an alternate port to a smarthost. If they are blocking port 25, they should allow it to their smarthost. Have you perhaps configured the Parent Proxy instead?

Cheers - Bob
__________________
ACE V7 - Astaro Preferred Partner since V3
SCA/UTM - Sophos Gold Solution Partner
www.MediaSoftUSA.com
Addicted to my iPhone!
Reply With Quote
Billybob's Avatar
Wizard
Join Date: Jul 2006
Location: United States
Posts: 1,846
#8 (permalink)  
Old 04-24-2009, 02:19 AM
Default

Quote:
I tried your suggestion using two different mail relays. It looks like the ASG is still trying to use port 25
Thats like saying the damn postman always delivers my mail in the mailbox instead of throwing it at the door Port 25 is standard smtp port.
Quote:
Is a smarthost different from an smtp relay?
Smarthost is usually the smtp server assigned to you by your ISP to send outgoing mail. SMTP relay can be any host on the internet that allows you to relay your mail. If your ISP doesn't allow it, you need a smarthost not a relay. Just go to your ISP's website and try to look for their settings on how to configure your mail client. Its probably there somewhere.

Also as Bob suggested make sure you are using the correct boxes for the correct items.
Reply With Quote
Member
Join Date: Apr 2009
Location: Brussels, Belgium, Europe
Posts: 92
#9 (permalink)  
Old 06-08-2009, 09:27 PM
Default

I'm having the same problem as the first poster.

I can telnet the smtp server of my isp on port 25 and i configured the emailaddress for the notification as my emailaddress at that isp.

However, at first i entered my gmail address in notifications.

Now, i removed all existing astaro notifications from the smtp spool (delete), rebooted the Astaro, but in the log i see it *still* tries to connect to smtp gmail, instead of my isp, wth?
Reply With Quote
BAlfson's Avatar
Grandis Professorem Astaro
Join Date: Mar 2007
Location: Oklahoma City
Posts: 21,097
#10 (permalink)  
Old 06-09-2009, 12:15 AM
Default

Steven, please be precise about your problem. It sounds completely different from the original post.

Cheers - Bob
__________________
ACE V7 - Astaro Preferred Partner since V3
SCA/UTM - Sophos Gold Solution Partner
www.MediaSoftUSA.com
Addicted to my iPhone!
Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On



All times are GMT. The time now is 05:04 AM.


Powered by vBulletin® Version 3.8.6
Copyright ©2000 - 2015, Jelsoft Enterprises Ltd.

These pages are specifically maintained for the discussion of firewall issues within the Open Source community, and might already reflect new alpha/beta releases under development. Please refer to our product specifications for the functionality of the actual release. Discussions of new/enhanced functionality does not constitute a commitment of Astaro, to integrate this functionality into future releases.