Hi,
I'm using my ASG220 gateway since about 2 weeks and possibly have a problem understanding the mail security settings.
I already configured our internal mailserver (Zimbra) to use the gateway as a smarthost for incoming and outgoing mail and the mx of our domain is set to the external address of the ASG220 gatway.
Additionally I would like to provide an additional SMTP server for my users to let them send inbound and outbound mail from home or their mobile devices. The mail server solution I sue (Zimbra) provides an authenticated and TLS protected SMTP service and I already created a DNAT entry for SMTP:
DNAT [Inbound NAT for IMAP on Mail Server]
Traffic selector: Any → IMAP → External (WAN) [WAN Mail] (Network)
Destination translation: Internal Mail Server
Now it's possible to connect to the SMTP port on the WAN address from outside but it seems that this connection is being automatically routed through the gateway's Mail security SMTP proxy since I get this message:
telnet mail.xyzdomain.com 25
Trying x.x.x.x...
Connected to mail.xyzdomain.com.
Escape character is '^]'.
220 gateway.xyzdomain.com ESMTP ready.
Is it possible to use the gatway only as a dedicated smarthost/mx without the feature of catching and monitoring all SMTP traffic?
The reason for that is that I wan't to let the user's authenticate directly on my internal mailserver when they use it as an SMTP.
Would it help when I create a DNAT with the 587 port on the WAN address and route it to 25 on the internal server?
This thread was automatically locked due to age.
