Having a rough time getting SMTP Auth for remote workers working correctly in V7.005.
Here's the layout: Perimeter Firewall ---> ASG 220 ---> Mail Server
ASG is in transparent bridged mode and the remote workers use the Perimeter firewalls IPSec VPN solution, getting an address from a reserved pool within the local LAN subnet.
With V6, I just had to create a local user on the ASG using the same username/password as the email account. V7 is being a real PITA to do the same thing on a consistent basis. Found out the hard way that user accounts in V7 are case sensitive now. Got that fixed, then added the users to EMail Security>SMTP>Relaying>Allowed Users. Then found that IPS was dropping some packets involved with SMTP auth. Tried to fix by manual rule modification only to find out that there is a bug with this currently and it doesn't work. Fixed that by creating host definitions based on the IP addresses in the VPN pool and excepting those hosts from IPS and adding them to host based SMTP allowed list. That seemed to work for a few days, then this morning, remote workers couldn't connect through again. No entries in the auth log. Now, I've created DNS hosts for the remote machines in ASG and added them to the relay allow list and IPS exception list. No word yet from users if this has fixed the issue. Very difficult to diagnose when it works for a while and then stops functioning properly with no log entries.
Does anyone else here have a similar setup and how are you handling remote users relaying through ASG? Anyone else having issues with this working? Are there any "gotchas" that anyone has found, like frequency of auth check (some of these users have their email client set to send/receive mail every minute)? I really need to get this working properly without having to create multiple exceptions rules for the same user/machine all over the place. I'm beginning to think that there's a bug in this process somewhere.
Thanks
This thread was automatically locked due to age.