I experienced some difficulties with the "connection" of my Astaro 7.0.9 and my brand new Exchange 2007 Server. First I had to argue with the Exchange Server to except anonymous connections. It took me 4 h to figure out, that I have to use command lets instead of the gui to get this done.
If have the same problem, thats what I have done:
1. open the Exchange PowerShell
2. Add a new receive connector:
new-ReceiveConnector -Name ‘Firewall SMTP Proxy’ -Usage ‘Custom’ -Bindings ‘0.0.0.0:25′ -Fqdn ’schmidtjohannes.de’ -RemoteIPRanges ‘10.10.0.1′ -Server ‘JSW006
3. Set ananymous rights
set-ReceiveConnector -identity “Firewall SMTP Proxy″ -PermissionGroups AnonymousUsers
4. Set furrhter permissions
Get-ReceiveConnector “Firewall SMTP Proxy” | Add-ADPermission -User “NT AUTHORITY\ANONYMOUS LOGON” -ExtendedRights “Ms-Exch-SMTP-Accept-Any-Recipient”
(Step 1 to 3 could also be done via the GUI)
Details could be found in my blog (german): http://www.security-blog.eu/2007/09/30/anonymous-smtp-verbindung-auf-einen-exchange-2007/
Now the permissions are set correctly (on the exchange) - I have double checked this with a blank debian system without any permissions in the Active Directory - the system was able to send mails via telnet. However if I try to connect to the astaro firewall (from a server in the DMZ (I do have a dual layer firewall complex)) I always get the message "Address unknown".
In the meanwhile I have deactivated all SPAM and anti virus features. There are just the basic settings in place (domains in the global tab). Further more if I try to connect to my exchange server from the astaro console I do not get a connect at all via telnet IP 25 (could ping the host).
Any suggestions how I could get this working?
Kind regards,
Johannes
This thread was automatically locked due to age.
