First at all xmail doc for smtp.ipprop.tab syntax says : "Address selection mask are formed by an IP address (network) plus the number of valid bits inside the network mask"
So change this 'smtp.ipprop.tab' line : "96.227.65.4" "WhiteList=1" with this this one : "96.227.65.4/32" "WhiteList=1" Then redoo your telnet tests, and if it don't work, report again :) Francis -----Message d'origine----- De: [EMAIL PROTECTED] A: xmail@xmailserver.org Date: 22/04/08 06:22 Objet: [xmail] Re: Lockdown xMail Dear Davide - On 4/18/2008 3:24PM ET you responded to my eMail about how to lockdown xMail for use with Postini or any private mail Relay. My OS is Windows 2003 Enterprise R2 Server SP2 running xMail 1.25. Please note that I do have two instances of xMail running on the same server. As far as I can this configuration works just fine. This configuration was perfected with information gleaned from several sources including the kind folks on this list. This xMail server in question is the second instance. The reason I have two xMail servers is so that the first one serves my existing eMailboxes and the second xMail Server will only accept eMail relayed to it from Postini. The xMail servers are behind a Firewall in a DMZ using public IPs. Your suggestion was: >Add the IP of the Postini box to SMTP.IPPROP.TAB (lowercase, > you know), with a "WhiteList=1" property. I continue to get the "551 Server use forbidden" from Postini which I assumed was still being sent back from xMail. To prove the source of the issue (Postini vs. xMail) I manually telnet-ed to the xMail server and typed "HELO relay.example.org" then "MAIL FROM:<[EMAIL PROTECTED]>" from my home office network which is NATed to a single public IP. As you will see from the test below that I included my home office public IP network address which is 96. address in the config files (to stand in for the Postini infrastructure). So I reviewed my following configs for errors and did not find any -- so here are the details --> server.tab ======== <more config> "SmtpConfig-64.74.149.27,25" "MailAuth" "SmtpConfig-64.74.149.27,8291" "MailAuth" <more config> smtp.ipprop.tab ============ "10.0.0.0/24" "WhiteList=1" "64.18.0.0/20" "WhiteList=1" "96.227.65.4" "WhiteList=1" <blank line> I also tried smtprelay.tab with the following just because I thought I should try: "10.0.0.0" "255.255.255.0 "64.18.0.0" "255.255.240.0" "96.227.65.4" "255.255.255.255" <blank line> Finally, I went back into the server config and commented out the "SmtpConfig-" lines in the server.tab and xMail responded with "250 OK" instead of the "551 Server use forbidden". Without the SmtpConfig I then sent an eMail from Hotmail to my test domain and Postini was able to delivery an eMail fine! Can you spot my config issue? Thanks, Hal Dell Managing Partner ePodWorks.net, Inc. =============WITH SmtpConfig======================== 220 smtp-03.phl1.epodworks.net <[EMAIL PROTECTED]> [XMail 1.25 ESMTP Server] service ready; Mon, 21 Apr 2008 23:34:39 -0400 HELO relay.example.org 250 smtp-03.phl1.epodworks.net MAIL FROM:<[EMAIL PROTECTED]> 551 Server use forbidden quit 221 [XMail 1.25 ESMTP Server] service closing transmission channel =============WITHOUT SmtpConfig======================== 220 smtp-03.phl1.epodworks.net <[EMAIL PROTECTED]> [XMail 1.25 ESMTP Server] service ready; Mon, 21 Apr 2008 23:38:30 -0400 HELO relay.example.org 250 smtp-03.phl1.epodworks.net MAIL FROM:<[EMAIL PROTECTED]> 250 OK quit 221 [XMail 1.25 ESMTP Server] service closing transmission channel =============SUCCESSFUL MAIL DELIVERY WITHOUT SmtpConfig===== (XXXXX@ was replaced for real eMail address because this eMail will be publicly archived) Received: from psmtp.com ([64.18.0.75]:45028) by smtp-03.phl1.epodworks.net ([64.74.149.27]:25) with [XMail 1.25 ESMTP Server] id <S13> for <[EMAIL PROTECTED]> from <[EMAIL PROTECTED]>; Mon, 21 Apr 2008 23:49:09 -0400 Received: from source ([65.54.246.139]) by exprod5mx216.postini.com ([64.18.4.10]) with SMTP; Mon, 21 Apr 2008 20:49:09 PDT Received: from BAY124-W44 ([207.46.11.207]) by bay0-omc2-s3.bay0.hotmail.com with Microsoft SMTPSVC(6.0.3790.3959); Mon, 21 Apr 2008 20:49:08 -0700 Message-ID: <[EMAIL PROTECTED]> Return-Path: [EMAIL PROTECTED] Content-Type: multipart/alternative; boundary="_1731ae70-8835-4c66-91d6-b2a54a21882f_" X-Originating-IP: [96.227.65.4] From: Hal Dell <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Subject: RE: Postini test day 2008-04-21-11-48 Date: Mon, 21 Apr 2008 23:49:08 -0400 Importance: Normal MIME-Version: 1.0 X-OriginalArrivalTime: 22 Apr 2008 03:49:08.0976 (UTC) FILETIME=[D1C1FF00:01C8A42B] X-pstn-neptune: 0/0/0.00/0 X-pstn-levels: (S:37.90482/99.90000 CV:99.0000 R:95.9108 P:95.9108 M:97.0282 C:98.6951 ) X-pstn-settings: 5 (2.0000:2.0000) s cv gt3 gt2 gt1 r p m c X-pstn-addresses: from <[EMAIL PROTECTED]> [15/1] - To unsubscribe from this list: send the line "unsubscribe xmail" in the body of a message to [EMAIL PROTECTED] For general help: send the line "help" in the body of a message to [EMAIL PROTECTED] - To unsubscribe from this list: send the line "unsubscribe xmail" in the body of a message to [EMAIL PROTECTED] For general help: send the line "help" in the body of a message to [EMAIL PROTECTED]