Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 8 replies
  • Answers 1 answer
  • Subscribers 5 subscribers
  • Views 5729 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Issue sending out e-mail after basic default install in a Virtual machine

cmp828

Hello,

 

I have some odd issue with sending out mail.

I built a basic VM machine of UTM 9.407-3 on ESXi 5.5. Basically has all the default firewall rules and almost no other configuration.

Web pages  / surfing works. I can pull in e-mail via pop3, but can not send out by smtp.

 

Using Thunderbird mail client

pop  on port 110

outgoing is using GoDaddy - smtpout.secureserver.net on port 465 with SSL/TLS.

Now the physical UTM machine all works fine. (it is not apples to apples so I can not just upload a config and forget about it) I am using everything transparent on both, so the UTM is to just pass everything along and out.

The physical machine is heavily customized for vlans but it is also using transparent mode, but I can send / receive mail fine. The VM machine of UTM is basically an out of the box default install that has the default mail rule of local / internal LAN out to any with all the default mail protocols set as configured by the wizard. I would think this would just let the mail go.

It has to be something very obvious and stupid I must be over looking. Looking at the settings for mail and outgoing mail from the internal network I can't see what setting is off or needs to be set. The VM is a very clean fresh install at basically the wizard defaults. Firewall rules as set by wizard should let it all go.

I switch between the VM and the actual hardware unit to test and can not have them up at same time.

Any suggestions on what to check and set or not set?

 

Chad



This thread was automatically locked due to age.
Parents Reply Children
  • 0 in reply to sachingurung

    I will look closer, I just saw the default wizard rule created for e-mail and appeared to have all mail protocols listed and LAN Network - and listed mail protocols allowed to WAN So thought it should be allowing all outgoing mail out. POP3 comes in just fine, but smtp going out does not. Will look closer at it and look at the logs much closer, some time this week.

  • 0 in reply to cmp828

    Hello,

     

    I finally have some time to try to look at things more. Still not sending out mail. I can receive mail just fine.

    I must be missing something simple but can't seem to see or figure out what setting I need to use.

    The old junk dual core computer running UTM is fine, but the VM and gen 7 HPdl360 server with clean install do the same.

    All web / Internet works, receive in pop3 e-mail works, not able to send out e-mail. Need to figure this out so I can get off the old system before it dies.

    Open to all suggestions. If anyone out there uses UTM with GoDaddy or Mediacomm Cable internet server and all is working for you, what settings did you use?

    So below is more information and some more log files. Looks like it is not even getting to smtpout.secureserver.net.

     

    I even created a DNS host, and tried smart host option using port 25.

    The first log is just out of the box install then I tried smart host on the 2nd set of logs.

     

     

    Able to receive e-mail, but can not send e-mail through Godaddy with new clean install of Sophos UTM 9.408-4
    clean install with little customization. All created wizard firewall rules are in place and enabled.
    I can pull mail in, but can not send out.
    The old computer running the UTM is a mess with lots of custom settings and vlans, but I can't seem to see what I need to put in this new VM to let the outgoing mail go. With smart host configured using port 25, I can not even send a backupfile to me via e-mail and do not get any UTM generated e-mails.


    POP3 IMAP SMTP Mail Servers for GoDaddy Internet Service Provider

        GoDaddy POP3 incoming mail server: pop.secureserver.net
        GoDaddy IMAP incoming mail server: imap.secureserver.net (port 143 or 993)
        GoDaddy SMTP outgoing mail server: smtpout.secureserver.net

    Called and confirmed SMTP settings

    smtpout.secureserver.net
    ports 80,3535,25,465

    Requires authentication - using my logon and password for godaddy e-mail.


    Sophos UTM smtp logs

    Sophos with out smart agent used.
    Mail client sending directly out.

    All firewall rules created by the wizzard are in place and enabled, including the e-mail messaging rule, as configured by the wizard.



    2016:11:25-09:10:49 utm exim-out[9086]: 2016-11-25 09:10:49 1cAHzA-00084c-6L mailstore1.secureserver.net [72.167.238.32]:25 Connection timed out
    2016:11:25-09:10:49 utm exim-out[9085]: 2016-11-25 09:10:49 1cAHzA-00084c-6L == cmp828@cmp828.net R=dnslookup T=remote_smtp defer (110): Connection timed out
    2016:11:25-09:10:49 utm exim-out[9645]: 2016-11-25 09:10:49 1cAHsZ-000367-61 == cmp828@cmp828.net R=dnslookup T=remote_smtp defer (-53): retry time not reached for any host
    2016:11:25-09:10:49 utm exim-out[9647]: 2016-11-25 09:10:49 1eIXjq-0001h3-9B == cmp828@cmp828.net R=dnslookup T=remote_smtp defer (-53): retry time not reached for any host
    2016:11:25-09:10:49 utm exim-out[9649]: 2016-11-25 09:10:49 1cAI3W-000269-2V == cmp828@cmp828.net R=dnslookup T=remote_smtp defer (-53): retry time not reached for any host
    2016:11:25-09:10:49 utm exim-out[9083]: 2016-11-25 09:10:49 End queue run: pid=9083
    2016:11:25-09:11:00 utm exim-out[9679]: 2016-11-25 09:11:00 Start queue run: pid=9679
    2016:11:25-09:11:00 utm exim-out[9681]: 2016-11-25 09:11:00 1cAHzA-00084c-6L == cmp828@cmp828.net R=dnslookup T=remote_smtp defer (-53): retry time not reached for any host
    2016:11:25-09:11:00 utm exim-out[9683]: 2016-11-25 09:11:00 1cAHsZ-000367-61 == cmp828@cmp828.net R=dnslookup T=remote_smtp defer (-53): retry time not reached for any host
    2016:11:25-09:11:00 utm exim-out[9685]: 2016-11-25 09:11:00 1eIXjq-0001h3-9B == cmp828@cmp828.net R=dnslookup T=remote_smtp defer (-53): retry time not reached for any host
    2016:11:25-09:11:00 utm exim-out[9687]: 2016-11-25 09:11:00 1cAI3W-000269-2V == cmp828@cmp828.net R=dnslookup T=remote_smtp defer (-53): retry time not reached for any host
    2016:11:25-09:11:00 utm exim-out[9679]: 2016-11-25 09:11:00 End queue run: pid=9679
    2016:11:25-09:11:18 utm exim-in[7627]: 2016-11-25 09:11:18 SMTP connection from [127.0.0.1]:33590 (TCP/IP connection count = 1)
    2016:11:25-09:11:18 utm exim-in[9733]: 2016-11-25 09:11:18 [127.0.0.1] F=<do-not-reply@fw-notify.net> R=<cmp828@cmp828.net> Accepted: from relay
    2016:11:25-09:11:18 utm exim-in[9733]: 2016-11-25 09:11:18 1cAI9m-0002Wz-2M <= do-not-reply@fw-notify.net H=localhost [127.0.0.1]:33590 P=esmtp S=1015 id=5013-09725-1480086678@utm
    2016:11:25-09:11:18 utm exim-in[9733]: 2016-11-25 09:11:18 SMTP connection from localhost [127.0.0.1]:33590 closed by QUIT
    2016:11:25-09:11:20 utm smtpd[7586]: QMGR[7586]: 1cAI9m-0002Wz-2M moved to work queue
    2016:11:25-09:11:24 utm exim-in[7627]: 2016-11-25 09:11:24 SMTP connection from [127.0.0.1]:33595 (TCP/IP connection count = 1)
    2016:11:25-09:11:24 utm exim-in[9747]: 2016-11-25 09:11:24 [127.0.0.1] F=<do-not-reply@fw-notify.net> R=<cmp828@cmp828.net> Accepted: from relay
    2016:11:25-09:11:24 utm exim-in[9747]: 2016-11-25 09:11:24 1cAI9s-0002XD-1J <= do-not-reply@fw-notify.net H=localhost [127.0.0.1]:33595 P=esmtp S=1015 id=5013-09742-1480086684@utm
    2016:11:25-09:11:24 utm exim-in[9747]: 2016-11-25 09:11:24 SMTP connection from localhost [127.0.0.1]:33595 closed by QUIT
    2016:11:25-09:11:25 utm smtpd[7586]: QMGR[7586]: 1cAI9s-0002XD-1J moved to work queue
    2016:11:25-09:11:30 utm smtpd[9770]: SCANNER[9770]: 1cAI9y-0002Xa-DF <= do-not-reply@fw-notify.net R=1cAI9m-0002Wz-2M P=INPUT S=291
    2016:11:25-09:11:30 utm smtpd[9770]: SCANNER[9770]: id="1000" severity="info" sys="SecureMail" sub="smtp" name="email passed" srcip="127.0.0.1" from="do-not-reply@fw-notify.net" to="cmp828@cmp828.net" subject="[utm][WARN-005] Failed WebAdmin login" queueid="1cAI9y-0002Xa-DF" size="291"
    2016:11:25-09:11:30 utm smtpd[9770]: SCANNER[9770]: 1cAI9m-0002Wz-2M => work R=SCANNER T=SCANNER
    2016:11:25-09:11:30 utm smtpd[9770]: SCANNER[9770]: 1cAI9m-0002Wz-2M Completed
    2016:11:25-09:11:30 utm smtpd[9770]: SCANNER[9770]: 1cAI9y-0002Xa-EL <= do-not-reply@fw-notify.net R=1cAI9s-0002XD-1J P=INPUT S=291
    2016:11:25-09:11:30 utm smtpd[9770]: SCANNER[9770]: id="1000" severity="info" sys="SecureMail" sub="smtp" name="email passed" srcip="127.0.0.1" from="do-not-reply@fw-notify.net" to="cmp828@cmp828.net" subject="[utm][WARN-005] Failed WebAdmin login" queueid="1cAI9y-0002Xa-EL" size="291"
    2016:11:25-09:11:30 utm smtpd[9770]: SCANNER[9770]: 1cAI9s-0002XD-1J => work R=SCANNER T=SCANNER
    2016:11:25-09:11:30 utm smtpd[9770]: SCANNER[9770]: 1cAI9s-0002XD-1J Completed
    2016:11:25-09:11:30 utm exim-out[9772]: 2016-11-25 09:11:30 1cAI9y-0002Xa-DF == cmp828@cmp828.net R=dnslookup T=remote_smtp defer (-53): retry time not reached for any host
    2016:11:25-09:11:30 utm exim-out[9774]: 2016-11-25 09:11:30 1cAI9y-0002Xa-EL == cmp828@cmp828.net R=dnslookup T=remote_smtp defer (-53): retry time not reached for any host
    2016:11:25-09:11:49 utm exim-out[9199]: 2016-11-25 09:11:49 1cAHsS-000367-4b mailstore1.secureserver.net [72.167.238.32]:25 Connection timed out
    2016:11:25-09:11:49 utm exim-out[9198]: 2016-11-25 09:11:49 1cAHsS-000367-4b == cmp828@cmp828.net R=dnslookup T=remote_smtp defer (110): Connection timed out
    2016:11:25-09:11:49 utm exim-out[9835]: 2016-11-25 09:11:49 1cAHsZ-000367-61 == cmp828@cmp828.net R=dnslookup T=remote_smtp defer (-53): retry time not reached for any host
    2016:11:25-09:11:49 utm exim-out[9837]: 2016-11-25 09:11:49 1eIXjq-0001h3-9B == cmp828@cmp828.net R=dnslookup T=remote_smtp defer (-53): retry time not reached for any host
    2016:11:25-09:11:49 utm exim-out[9839]: 2016-11-25 09:11:49 1cAI3W-000269-2V == cmp828@cmp828.net R=dnslookup T=remote_smtp defer (-53): retry time not reached for any host
    2016:11:25-09:11:49 utm exim-out[9195]: 2016-11-25 09:11:49 End queue run: pid=9195




    I checked settings with Godaddy
    Configured smart host




    016:11:25-10:17:00 utm exim-out[22104]: 2016-11-25 10:17:00 Start queue run: pid=22104
    2016:11:25-10:17:00 utm exim-out[22106]: 2016-11-25 10:17:00 1cAHsZ-000367-61 == cmp828@cmp828.net R=smarthost_route T=smarthost_smtp defer (-53): retry time not reached for any host
    2016:11:25-10:17:00 utm exim-out[22108]: 2016-11-25 10:17:00 1eIXjq-0001h3-9B == cmp828@cmp828.net R=smarthost_route T=smarthost_smtp defer (-53): retry time not reached for any host
    2016:11:25-10:17:00 utm exim-out[22110]: 2016-11-25 10:17:00 1cAI3W-000269-2V == cmp828@cmp828.net R=smarthost_route T=smarthost_smtp defer (-53): retry time not reached for any host
    2016:11:25-10:17:00 utm exim-out[22112]: 2016-11-25 10:17:00 1cAI9y-0002Xa-DF == cmp828@cmp828.net R=smarthost_route T=smarthost_smtp defer (-53): retry time not reached for any host
    2016:11:25-10:17:00 utm exim-out[22114]: 2016-11-25 10:17:00 1cAI9y-0002Xa-EL == cmp828@cmp828.net R=smarthost_route T=smarthost_smtp defer (-53): retry time not reached for any host
    2016:11:25-10:17:00 utm exim-out[22116]: 2016-11-25 10:17:00 1cAHsS-000367-4b == cmp828@cmp828.net R=smarthost_route T=smarthost_smtp defer (-53): retry time not reached for any host
    2016:11:25-10:17:00 utm exim-out[22118]: 2016-11-25 10:17:00 1cAHzA-00084c-6L == cmp828@cmp828.net R=smarthost_route T=smarthost_smtp defer (-53): retry time not reached for any host
    2016:11:25-10:17:00 utm exim-out[22104]: 2016-11-25 10:17:00 End queue run: pid=22104
    2016:11:25-10:17:35 utm smtpd[7566]: MASTER[7566]: (Re-)loading configuration from Confd
    2016:11:25-10:17:36 utm smtpd[7566]: MASTER[7566]: Past 07:00:00, QR status one set to 'sent'
    2016:11:25-10:17:36 utm smtpd[7566]: MASTER[7566]: Before 16:00:00, QR status two set to 'pending'
    2016:11:25-10:17:36 utm exim-in[7627]: 2016-11-25 10:17:36 pid 7627: SIGHUP received: re-exec daemon
    2016:11:25-10:17:36 utm exim-in[7627]: 2016-11-25 10:17:36 exim 4.82_1-5b7a7c0-XX daemon started: pid=7627, no queue runs, listening for SMTP on port 25 (IPv4) port 587 (IPv4) and for SMTPS on port 465 (IPv4)
    2016:11:25-10:18:00 utm exim-out[22356]: 2016-11-25 10:18:00 Start queue run: pid=22356
    2016:11:25-10:19:00 utm exim-out[22478]: 2016-11-25 10:19:00 Start queue run: pid=22478



  • 0 in reply to cmp828

    There's some confusion here.  Is this a question about the SMTP Proxy?  If so, let's move this thread to that forum and you will get entirely different answers.

    Cheers - Bob

  • 0 in reply to BAlfson

    Hello,

     

    No I am not using SMTP Proxy. Just the Thunderbird e-mail application doing its thing talking directly to the GoDaddy smtpout server.

    I was working with both a physical XG (computer loaded with XG) and I also downloaded the VMware OVF of the XG, since in the end my goal is to run as a VM.

    I did later see I got just one e-mail from one of the XG systems.  I did Google around and found some more setup information and think I had selected some wrong options in the wizard setup. So I will reset the Xg system and rerun the wizard, maybe yet today.

    Use these options, all I want to do is get the XG in a basic default setting to let everything from LAN to any WAN, then as I learn the system set up more rules and forwarding.

    Default   network policy

     Web filter – default workplace

    App filter - none

    Ips – none

    I am planning to move from the UTM v9 to XG, and since I am wanting to use as a VM, I am using the VOF file they provide for esxi.

    If I only had more time in a day or week!

    Again thank you for taking a look at my last post.

    Sincerely, Chad

  • 0 in reply to cmp828

    Chad, the log you showed was from the SMTP Proxy.  If you disable that, your configuration should be fine.  See #2 in Rulz.

    Cheers - Bob

  • 0 in reply to BAlfson

    Hello,

     

    Thank you for that information. My UTM machine died the other week and so I decided to go over to the XG and use the down loadable VM for ESXI server and run my new system as a VM.

    Big learning curve from UTM 9 to XG 16. You and the other forum users have been great help to me with the UTM 9. Thank you for all your time and assistance. If and when time allows I still might try to build a VM of UTM 9 fresh. Should I ever do make one and have it working I will have to make a OVF template and either upload some place or host on my web server for anyone to download and edit.

    Best wishes to all.

     

    Chad