Sorry about the personal reply, I didn't mean to be rude.  Yes, the POP
connection did originate from the same address as SMTP, and I used to
cdbdump to check tcp.smtp.cdb.  I found out today that Telia actually goes
through Safepages, and Safepages blocks everything on port 25 to any server
other than their own (217.127.146.11).  After I was told that, I verified it
by dialing into one of their dialups and doing a port scan of our server...
25 was the only open port that didn't show up in the scan.  The good news is
that POP before SMTP works beautifully for everyone else except those who go
through Safepages (or have port 25 blocked).  So as an easy work around I
added mail.medzip.net pointing to 217.127.146.11 (medzip.net is another
domain we have, I'll be changing the pointer to something.powercalling.net
after we transfer the authority for the domain).  For our normal users,
they'll continue using POP before SMTP with the address
mail.powercalling.net pointing to our server (65.243.94.6). Obviously, this
will keep spammers out since only those on the trusted IP range for
Safepages can use the pointer to 217.127.146.11 (others outside will get a
no relay error), and only our users who authenticate first can use our
servers.  Thank you again for your help.

andrew :)

> Hi Andrew,.
>
> please always respond to the list, not personally to me. Maybe someone
> can bring some light into your situation after reading it, so I'm
> completely quoting it:
>
> > Thank you for getting back so quickly.  It appears that I was wrong, and
> > roaming users is working well.  The problem is that we use Telia (going
> > through Megapop dialups) for our users who want access in other cities.
I
> > was testing roaming users on the Telia dialups, and for some reason even
> > though the cdb is being regenerated correctly, and their IPs are entered
in,
> > relay access is still denied to them.
>
> I cannot trust that part. Did the POP connection really originate from
> the same IP addresse as the SMTP connection?
>
> How did you check if the IP address has been in tcp.smtp.cdb?
>
> > I had a couple friends try going
> > through Comcast and Bellsouth, and after they authenticate with
vpopmail,
> > their address is added to open-smtp, added into
> > /home/vpopmail/etc/tcp.smtp.cdb, and they can relay.  I'm still not sure
why
> > Telia gives different results than Bellsouth or Comcast (I don't believe
> > Telia uses transparent relaying, or anything else wierd), but if I can't
> > figure it out I'll probably recompile with --enable-roaming-users=n, and
> > switch to SMTP AUTH.
>
> No need to switch; you can use both techniques at once, thus allowing
> clients to use whichever they want.
>
> Jonas
>
>
>


Reply via email to